Let's Encrypt is amazing! Easily add SSL to any site & automate renewals. Monitor expiry with a custom code solution. 
https://www.funkysi1701.com/posts/2020/testing-for-expiring-ssl-certificates/ #Security #SSL #Testing
DeadSwitch Technical Dispatch // Fortify the Flow: Proxy Frontlines & The Truth in Certificates #NGINX #ReverseProxy #CyberSecurity #SSL #X509 #LinuxAdmin #OpSec #WebSecurity #HTTPS #LetsEncrypt #DigitalCertificates #DeadSwitch #TomITCafe #EncryptEverything #TLS13 #BackendSecurity #ProxyPower #Infosec #FullStackSecurity #TechnicalWriting
Does anyone know how this new SSL cert expiry date thing is going to affect things like user authentication with SSL certs, i.e. for openvpn.
If we're running our own CA, can I get safari, chrome et al to accept longer cert expiry?
I've developed a new unofficial metric for #burnout: what percentage of the images you've downloaded or created recently would qualify as shitposting.
Here are some of mine from the last month:
La vida útil de los certificados SSL/TLS se reducirá a 47 días para 2029 https://blog.elhacker.net/2025/04/vida-util--certificados-https-tls-47-dias-2029.html #certificado #ssl #tls
Nur noch 47 Tage:
#Gültigkeit von #TLS - #Zertifikaten wird drastisch verkürzt
Ab 2029 dürfen #TLS-Zertifikate statt 398 nur noch höchstens 47 Tage lang gültig sein. Der von #Apple eingereichte Vorschlag hat breite Zustimmung erhalten.
Das #CA / #Browser #Forum hat beschlossen, die maximale Gültigkeitsdauer digitaler Zertifikate für den verschlüsselten Datenaustausch via #SSL / #TLS von aktuell 398 auf deutlich geringere 47 Tage zu reduzieren.
Состав TLS-сертификата на примере «шестидневного» варианта от Let's Encrypt
Посмотрим, как устроен современный TLS-сертификат со "сверхкоротким" сроком действия. В статье описано значение основных полей и ряд неочевидных особенностей, с этими полями связанных - формат серийного номера, SCT-метки и другие занимательные элементы.
Specific schedule:
March 15, 2026 - Cert validity (and Domain Control Validation) limited to 200 days.
March 15, 2027 - Cert validity (and Domain Control Validation) limited to 100 days.
March 15, 2029 - Cert validity limited to 47 days and Domain Control Validation limited to 10 days.
There's gonna be a lot of complaints about this in change control meetings over the next year200 days.
Buckle up, kids. Automate your certificate rotations or die trying. WebPKI certificate validity period will be 47 days by 2029. https://www.bleepingcomputer.com/news/security/ssl-tls-certificate-lifespans-reduced-to-47-days-by-2029/
#SSL/#TLS certificate lifespans reduced to 47 days by 2029
Why shorter SSL/TLS certificate lifespans matter https://www.helpnetsecurity.com/2025/04/15/certificate-shorter-lifespans/ #Expertanalysis #cybersecurity #Expertcorner #certificates #Don'tmiss #Hotstuff #opinion #Sectigo #SSL/TLS #News
SSL/TLS Certificate Lifespans Slashed to 47 Days: A New Era of Security Management
The CA/Browser Forum's decision to reduce SSL/TLS certificate lifespans to just 47 days by 2029 marks a pivotal shift in cybersecurity practices. This change aims to enhance security by minimizing ris...
Version 5.20 of the open source encryption protocol AmiSSL has been released for AmigaOS 3 and 4, which is now based on the latest version 3.5.0 (8.4.2025) of OpenSSL.
縮短 TLS certificate 的最長效期的投票 SC-081
在 Lobsters 上看到縮短 TLS certificate 最長效期的投票消息:「Mandatory short duration TLS certificates are probably coming soon」。 文章裡面有提到 mailing list 上的投票:「Voting Period Begins: SC-081v3: Introduce Schedule of Reducing Validity and Data Reuse Periods」,投票期間已經結束了,所以剛好可以算一下票數。 Certificate Consumers 端: YES (4):Google、Apple、Mozilla、Microsoft Certificate Issuer 端: YES…
Fortinet Response Addressing Post-Exploitation in FortiGate Devices via Symbolic Links
Fortinet FortiGate devices often run SSL - VPN services to allow remote access, especially in work from home environments or critical infrastructure. Recently, a new post exploitation method was discovered by Fortinet where attackers were able to maintain read only access to FortiGate devices even after organizations have applied official security patches. This is done using a symbolic link, which acts as a hidden shortcut between folders in the system which allowing the attacker to read sensitive files.
The attack begins with the exploitation of previously known vulnerabilities in Fortinet devices, including CVE-2022-42475, CVE-2023-27997, and possibly CVE-2024-21762. Once attackers gain access, they create a symbolic link between the user and root file systems. This symbolic link is hidden inside a directory that serves language files for SSL-VPN letting the attacker retain read only access to configuration files and other sensitive data even after patches are installed.
Pulse ID: 67fbba9f1b420d0f6d322448
Pulse Link: https://otx.alienvault.com/pulse/67fbba9f1b420d0f6d322448
Pulse Author: cryptocti
Created: 2025-04-13 13:22:39
Be advised, this data is unverified and should be considered preliminary. Always do further verification.
Egun on. #SSL #ziurtagiria-rekin webgunea duzuen kideei galdera.
Non eskuratu duzue webgune ziurtagiria prezio txukunean? Zuek emandako informazioa primeran etorriko zait. Eskerrik asko.
#OpenSSL 3.5.0 (#LTS) has been released (#SSL / #TLS) https://openssl-library.org/
DevelopersIO 
