[HN Gopher] Let's Encrypt's old Root Certificate is expiring ___________________________________________________________________ Let's Encrypt's old Root Certificate is expiring Author : zdw Score : 67 points Date : 2021-09-20 17:29 UTC (5 hours ago) (HTM) web link (scotthelme.co.uk) (TXT) w3m dump (scotthelme.co.uk) | davidhyde wrote: | I can see this being an issue for embedded systems that were set | up before Let's Encrypt added their new root authority. Some of | these embedded systems won't have an automatic way to update | their trust anchors like browsers and operating systems typically | do and so 30 September 2021 will be their Y2K date. RIP oh ye IOT | toaster! | jeroenhd wrote: | If those devices require LE and still haven't received | (automatic) updates already, I'd consider them IoT trash | regardless. It's probably part of some IoT botnet already. | | Embedded devices that aren't updated regularly for long periods | of time are the reason we can't have nice things on the | internet. | _jal wrote: | Let's hope for can't-connect-to-anything failure modes. | | The only thing worse than bricked electronic trash is | functional, malicious electronic trash. | teddyh wrote: | This reminds me of how forests actually benefit from the | occasional wildfire. | CircleSpokes wrote: | Yeah such systems will be problematic. Those type of systems | also have similar problems in cases where a certificate has | been revoked. Thankfully that isn't a very big problem (at | least at the moment). | tinus_hn wrote: | So does this mean anything for clients worth supporting? I don't | care if some museum piece like an iPhone 4 no longer works. ___________________________________________________________________ (page generated 2021-09-20 23:00 UTC)