💾 Archived View for bbs.geminispace.org › u › alexlehm › 4563 captured on 2023-11-04 at 16:11:19. Gemini links have been rewritten to link to archived content
⬅️ Previous capture (2023-09-28)
-=-=-=-=-=-=-
Re: "How many here use the same TLS certificate on their gemini..."
I copy the files with sudo and access them with the user the server is running under
2023-08-19 · 3 months ago
@alexlehm Oh there is a runtime option, and I use docker certbot so I think I can use it this way:
docker compose run --rm certbot renew --reuse-key
I will see what happens next month upon renewal 😁
I see the purpose as different. The point of minting a key is to have a centralised chain of trust. I think the key life times are for the CA to validate or audit the keys. CRLs are not always effective, so everything must have a lifetime.
In Gemini, it's TOFU so the utility of a lifetime and of minting are both limited and across purposes.
2023-08-20 · 3 months ago
How many here use the same TLS certificate on their gemini server that they get for their web server? I found it not too hard to setup. I am surprised I don't see more gemini capsules doing the same.
💬 Supernova · 13 comments · 2023-08-19 · 3 months ago · #certificates