savannah-users
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Savannah-users] savannah.gnu.org certificate expired?

From: Bob Proulx
Subject: Re: [Savannah-users] savannah.gnu.org certificate expired?
Date: Wed, 5 Mar 2014 14:24:46 -0700
User-agent: Mutt/1.5.21 (2010-09-15) 
Bob Proulx wrote:
> Paul Smith wrote:
> > Jan Owoc wrote:
> > > Paul Smith wrote:
> > > > I'm getting a warning from my browser saying that the savannah.gnu.org
> > > > HTTPS certificate has expired.
> > > 
> > > I can confirm that my browser (Firefox) also thinks the certificate
> > > expired about 6 hours ago. Does anyone know if it's the Savannah
> > > Hackers or the FSF Sysadmins who would be responsible for generating a
> > > new certificate?
> 
> Yep.  And I don't know.  I am looking into it starting right now.  But
> since this was not scheduled I imagine it will take a bit to figure
> out what should be happening and then more to actually do it.  I think
> I remember reading that the FSF prefers some SSL signers over others
> due to software free(dom)ness issues.  We need to figure that out and
> then move forward to update it.  Actually installing a certificate is
> trivial at that point.

I appears that the current expired certificate was set up by Savannah
Hackers.  It looks like they went with StartCom since they provide
them for zero dollars and also support FLOSS.  However they use the
"open" word in ways that the FSF do not like.

I talked with Nico and the FSF is preferring to use Gandi these days
due to their commitment to free(dom) software and the FSF is going to
buy the certificates for savannah.{non,}gnu.org for us.  Yay!

Things on are motion now and should be resolved soon.

Bob
reply via email to
[Prev in Thread] Current Thread [Next in Thread]