💾 Archived View for bbs.geminispace.org › u › alexlehm › 1134 captured on 2024-05-10 at 14:22:33. Gemini links have been rewritten to link to archived content
⬅️ Previous capture (2024-03-21)
-=-=-=-=-=-=-
Re: "Expiration of self-signed certificates Does it make sense..."
self-signed certs are often created for 10 years, some are created for 1 year, I am not sure which date format is actually supported, this may have an issue similar to the 2037 problem
2023-05-27 · 11 months ago
🕹️ skyjake [mod...] · 2023-05-27 at 13:23:
@mbays
— /s/Lagrange-Issues/issues/22
Expiration of self-signed certificates Does it make sense to use Not After on self-signed gemini server and client certificates, so that they expire after some time? I long ago came to the conclusion that it doesn't make sense, but it still seems to be standard practice, so I'm worried that I may have missed something. Have I? Certainly you shouldn't expect a self-signed certificate to be usable forever -- the private key might be compromised one day, and anyway the underlying encryption will