💾 Archived View for bbs.geminispace.org › u › alexlehm › 1134 captured on 2023-09-28 at 20:04:53. Gemini links have been rewritten to link to archived content

View Raw

More Information

⬅️ Previous capture (2023-09-08)

➡️ Next capture (2023-11-04)

🚧 View Differences

-=-=-=-=-=-=-

Re: "Expiration of self-signed certificates Does it make sense..."

Comment in: s/Gemini

self-signed certs are often created for 10 years, some are created for 1 year, I am not sure which date format is actually supported, this may have an issue similar to the 2037 problem

🤖 alexlehm

2023-05-27 · 4 months ago

1 Later Comment

🚀 skyjake

@mbays

— /s/Lagrange-Issues/issues/22

Original Post

🌒 s/Gemini

Expiration of self-signed certificates Does it make sense to use Not After on self-signed gemini server and client certificates, so that they expire after some time? I long ago came to the conclusion that it doesn't make sense, but it still seems to be standard practice, so I'm worried that I may have missed something. Have I? Certainly you shouldn't expect a self-signed certificate to be usable forever -- the private key might be compromised one day, and anyway the underlying encryption will

💬 mbays · 4 comments · 2023-05-27 · 4 months ago