<pre><code>micalg=3Dpgp-sha256; protocol=3D"application/pgp-signature"
</code></pre>

<p>--=3D-=3D-=3D</p>

<p>"Luke T. Shumaker" <a href=3D"ma&#x69;&#x6C;to:l&#x75;&#x6=
B;e&#x73;h&#x75;@sb&#x63;&#x67;&#x6C;&#x6F;&#x62;&#x=
61;&#x6C;&#x2E;n&#x65;t">l&#x75;&#x6B;e&#x73;h&#x7=
5;@sb&#x63;&#x67;&#x6C;&#x6F;&#x62;&#x61;&#x6C;&#x2E;n&#x=
65;t</a> writes:</p>

<blockquote>
  <p>The CN=3D3D*.parabola.nu SSL cert has expired.</p>
=20=20
  <p>The CSR is at repo:/etc/ssl/private/x.pabrabola.nu.csr
  It the new crt needs to be installed to rshg054:/etc/ssl/private/x.pabrab=
=3D
  ola.nu.crt
  Note that those are different servers.</p>
=20=20
  <p>run <code>kill -HUP $(cat /run/nginx.pid)</code> after updating the ce=
rt.</p>
=20=20
  <p>I don't have the CACert credentials, so I can't do it.</p>
</blockquote>

<p>there should be a "certs" dir that's my script to upgrade/create cacert
certificates, iirc it's under /root</p>

<p>transparent security \o/</p>

<p>=3D2D-=3D20
http://endefensadelsl.org</p>

<p>--=3D-=3D-=3D</p>

<p>-----BEGIN PGP SIGNATURE-----</p>

<p>iQEcBAEBCAAGBQJSZuH4AAoJEEVgMtcXpM2cUOYH/jbu9qYVmmqNMG9+UceHgnC8
eDV81yY4+P5nQYOAuzazxd0atmJQX6kHMZeK+ylLcGZial0Unck8YMQhDSM8R5EI
bQhBxJGWw1iRSicUKaG1oOvKMyVtQLi5lt6Q1q40gMFHuV67B5JHnv9cBvjJVl2y
pUuVMiTowg1mWyrrdBiQEYvLuHivEwMlgCxS0HYKVdPX8ytBWdghbnmG7lV/+hRU
WpCrWicU1QQMG7fvcXXnsQ2NEptseLjeaOCaDPV+C3/c/mYY1np+N/Fm1nISQvfX
OvQPhtwgsgP1O5LNyjOskf6Wah6kpXsakRQ+utGjPrHLmwM6yyMcpK4OFR2DBG8=3D
=3Dhnuu
-----END PGP SIGNATURE-----
--=3D-=3D-=3D--</p>