@themarkymark, very interesting. I'm not running a full node, but I have several sites that are using Let's Encrypt Certificates with the auto-renewal turned on. In reading their post about the vulnerability it looks like they are confident they can fix the issue and turn back on the tls-sni challenge. I'm going to have to look at all my certificates now. Here's to hoping they fix the issue before my 90 day renewal comes up.
You are viewing a single comment's thread from:
Yeah, I believe it will be enabled again but it is more difficult to make new certificates and existing renewals will fail. If they fail on a production system it could be a lot of headaches to deal with it at the last second.
Couldn't agree more. Luckily, while most of my servers are considered "production" if they were to fail it wouldn't be devastating for anyone who uses them. All the same, I should probably take your advice here and change the way my renewals work. Thanks again for the info!