You need the self-signed certificate, not the cross-signed
one, since the cross-signed one is using an old, expired
trust chain.
Hello Arelor!
** On Saturday 16.10.21 - 06:31, Arelor wrote to Ogg:
You need the self-signed certificate, not the cross-signed
one, since the cross-signed one is using an old, expired
trust chain.
Just a little followup.. I tried their "test" links below:
ISRG Root X1
Valid <== this one worked OK
Revoked <== this one loaded properly with "revoked"
Expired <== this wouldn't load.
ISRG Root X2
Valid <== this one worked OK
Revoked <== this one loaded with a "revoked" page.
Expired <== this one wouldn't load.
So.. the certifs are probably installed fine in system/browser
program?
Now, only TB's mail system is still complaining about
invalidity. :(
You also have to manually remove the expired DST X3 one.
Hello Arelor!
** On Sunday 17.10.21 - 05:55, Arelor wrote to Ogg:
You also have to manually remove the expired DST X3 one.
Ah.. That I haven't done.
But I didn't see any "LetsEncrypt" certifs in the list of
certifs.
Sysop: | Retros |
---|---|
Location: | Toronto, Canada |
Users: | 23 |
Nodes: | 8 (0 / 8) |
Uptime: | 207:24:09 |
Calls: | 1,087 |
Files: | 6 |
Messages: | 29,649 |