Sysadmin

5935 readers

1 users here now

A community dedicated to the profession of IT Systems Administration

founded 5 years ago

MODERATORS

[email protected]

TLS Certificate Lifetimes Will Officially Reduce to 47 Days (www.digicert.com)

submitted 1 week ago by [email protected] to c/[email protected]

10 comments fedilink hide all child comments

cross-posted from: https://feditown.com/post/1233561

you are viewing a single comment's thread
view the rest of the comments

[–] [email protected] 6 points 1 week ago (2 children)

But why

[–] [email protected] 5 points 1 week ago* (last edited 1 week ago) (1 children)

Security, a malicious individual could mitm or impersonate another server when the private key is leaked. Reducing the timespan from the current 398 days reduces the amount of time compromised certificates can be used. It is possible to revoke certificates, but I think this is for cases when devices are unable to receive those messages.

[–] [email protected] 2 points 1 week ago

Ah thanks for explaining. Now it makes sense