💾 Archived View for bbs.geminispace.org › u › alexlehm › 1134 captured on 2023-07-22 at 18:30:11. Gemini links have been rewritten to link to archived content
-=-=-=-=-=-=-
Re: "Expiration of self-signed certificates Does it make sense..."
self-signed certs are often created for 10 years, some are created for 1 year, I am not sure which date format is actually supported, this may have an issue similar to the 2037 problem
2023-05-27 · 8 weeks ago
@mbays
— /s/Lagrange-Issues/issues/22
Expiration of self-signed certificates Does it make sense to use Not After on self-signed gemini server and client certificates, so that they expire after some time? I long ago came to the conclusion that it doesn't make sense, but it still seems to be standard practice, so I'm worried that I may have missed something. Have I? Certainly you shouldn't expect a self-signed certificate to be usable forever -- the private key might be compromised one day, and anyway the underlying encryption will