pissnet/pissircd
1
0
Fork 0
mirror of https://github.com/pissnet/pissircd.git synced 2024-06-05 07:48:44 +01:00
Code Issues Projects Releases Wiki Activity
9060 commits 6 branches 0 tags 266 MiB
Commit graph

5 commits

Author SHA1 Message Date
Bram Matthys
d2ef328147
Update curl-ca-bundle.crt to version of Thu Sep 30 03:12:05 2021 GMT 
from https://curl.se/ca/cacert.pem. Has a few changes, but the most
notable change is that they removed DST Root CA X3. This fixes
verifying Let's Encrypt certificates if you use the "DST Root CA X3"
chain (which is currently the default in certbot and all) on:
* OpenSSL 1.0.2 or earlier (old but in use on eg: Debian 8, Ubuntu 16.04, ..)
* LibreSSL below 3.3.5/3.2.7 (so until a day ago)

This only affects outgoing connections, so for remote includes and
for server linking. Server linking is only affected if you use the
link::verify-certificate option, which most people don't use.

On a side note, ISRG Root X1, so the "real root" for Let's Encrypt is
already included since August 2017 (c8a67f9436)
 2021-10-03 10:13:40 +02:00
Bram Matthys
f4b14330a8
Update curl-ca-bundle: Certificate data from Mozilla as of: Tue Jan 19 04:12:04 2021 GMT 
https://curl.se/ca/cacert-2021-01-19.pem
[skip ci]
 2021-03-08 11:00:33 +01:00
Bram Matthys
60f143acfb
Update curl-ca-bundle to Wed Jan 1 04:12:10 2020 GMT 
[skip ci]
 2020-05-24 17:37:16 +02:00
Bram Matthys
c105e6958c
Update curl-ca-bundle to version of Wed Oct 16 03:12:09 2019 GMT 
from https://curl.haxx.se/docs/caextract.html
 2019-10-27 10:23:12 +01:00
Bram Matthys
2b0afacdf0
Rename of "ssl" to "tls" part 2 2019-08-12 14:35:32 +02:00