[HN Gopher] Let's Encrypt's old Root Certificate is expiring
___________________________________________________________________
Let's Encrypt's old Root Certificate is expiring
Author : zdw
Score : 67 points
Date : 2021-09-20 17:29 UTC (5 hours ago)
(HTM) web link (scotthelme.co.uk)
(TXT) w3m dump (scotthelme.co.uk)
| davidhyde wrote:
| I can see this being an issue for embedded systems that were set
| up before Let's Encrypt added their new root authority. Some of
| these embedded systems won't have an automatic way to update
| their trust anchors like browsers and operating systems typically
| do and so 30 September 2021 will be their Y2K date. RIP oh ye IOT
| toaster!
| jeroenhd wrote:
| If those devices require LE and still haven't received
| (automatic) updates already, I'd consider them IoT trash
| regardless. It's probably part of some IoT botnet already.
|
| Embedded devices that aren't updated regularly for long periods
| of time are the reason we can't have nice things on the
| internet.
| _jal wrote:
| Let's hope for can't-connect-to-anything failure modes.
|
| The only thing worse than bricked electronic trash is
| functional, malicious electronic trash.
| teddyh wrote:
| This reminds me of how forests actually benefit from the
| occasional wildfire.
| CircleSpokes wrote:
| Yeah such systems will be problematic. Those type of systems
| also have similar problems in cases where a certificate has
| been revoked. Thankfully that isn't a very big problem (at
| least at the moment).
| tinus_hn wrote:
| So does this mean anything for clients worth supporting? I don't
| care if some museum piece like an iPhone 4 no longer works.
___________________________________________________________________
(page generated 2021-09-20 23:00 UTC)