I just wrote a blog entry arguing that TLS certificate expiry times are a hack[1], because apparently sometimes I like setting things on fire. I can always blame it on the fever.
(Also I look forward to people explaining to me other good reasons for TLS certificates to expire that aren't hacks to get around key compromise and the lack of revocation.)
1: https://utcc.utoronto.ca/~cks/space/blog/tech/TLSCertificateExpiryHack
Chris Siebenmann /
npub16g…5g9hv
2024-01-07 23:13:31
Author Public Key
npub16gknu73hfrmy6enushmtcq4yuyk3ml0aeadk7fj5hapws3mewyfq45g9hvPublished at
2024-01-07 23:13:31Event JSON
{
"id": "e1f65a604fb2482e480de4224867aa05dba29c14ad818b1a5ef4d5caf6c29798",
"pubkey": "d22d3e7a3748f64d667c85f6bc02a4e12d1dfdfdcf5b6f2654bf42e847797112",
"created_at": 1704669211,
"kind": 1,
"tags": [
[
"proxy",
"https://mastodon.social/users/cks/statuses/111717201417318282",
"activitypub"
]
],
"content": "I just wrote a blog entry arguing that TLS certificate expiry times are a hack[1], because apparently sometimes I like setting things on fire. I can always blame it on the fever.\n\n(Also I look forward to people explaining to me other good reasons for TLS certificates to expire that aren't hacks to get around key compromise and the lack of revocation.)\n\n1: https://utcc.utoronto.ca/~cks/space/blog/tech/TLSCertificateExpiryHack",
"sig": "a44a4678719ff2dc9ab0e2bca3daad4635486b4f45315d8a99a59199a45e6152c9cb7d6e74a8df1fda1c732da5f4d59f4031fdcae2d172c98b63b627d7ae0ed6"
}