[Dev] certificates have been renewed

Michał Masłowski mtjm at mtjm.eu
Thu Feb 21 16:29:27 GMT 2013

> and reloaded nginx (on both servers) and prosody.  is something else
> using tls?  if not, why not? :P

postfix on repo should be.

> ps: hitting "renew" on cacert doesn't work, we have to generate a new
> csr using the host key.
>   certtool -q --load-privkey=$host.key --outfile=$host.$today.csr

Do we have a policy of replacing private keys?
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 835 bytes
Desc: not available
URL: <https://lists.parabola.nu/pipermail/dev/attachments/20130221/ed5f6b30/attachment.sig>

More information about the Dev mailing list