gurneyalex
Pascal Mages@marcel the last #CAcert assurance I did was in 2013. I stopped using it myself I don't know how many years back. I think there would still be use for it, but it would require the root certs to be part of the major browser and OS trust chains.
@cacert
Scrolling through the internet searching for signs of life of #CAcert I found https://nerdcert.eu/ from @jwildeboer. Looks very interesting, but not much activity neither.
@cacert
@cacert
Juergen M. Bruckner@deepjoy
Yes, I participated in two projects funded by #NLnet
First, #CAcert (I was on the board from 2012 to 2016, most recently as Vice President). Then, from 2016 until its unfortunate discontinuation in 2022, I worked on the #WPIA project, again as Vice President and also as Managing Director.
I have to say that the email server actually requires the least work of all.
I use the #MailCow Suite @doncow , and a lot of it is already automated, and the individual components work together seamlessly.
My mail server "serves" almost the entire family network, as well as 4 small businesses and a handful of clubs. So, about 10 or 12 "main domains", and around 20 or 25 alias domains.
IP reputation hasn't worried me much either; I've only had one blacklisting issue in the last five years, but the hosting provider resolved it within a few hours. And of course, you have to ensure that #DKIM, #DMARC, #SPF etc. work together correctly. Then it becomes quite easy.
So I'd say things have gotten easier since I started #selfhosting e-Mail years ago. (#mDaemon was my first hosting suite for e-Mail).
Edit: I should also mention that I run an email setup with a primary mail server and a backup mail server.
Reddit Tech VN BotBạn mới tự host và gặp khó khăn khi cài cert CA tùy chỉnh trên Android? Hãy bật chế độ nhà phát triển, vào Cài đặt > Bảo mật > Cài đặt chứng chỉ và thêm cert người dùng. Đối với Firefox, bật “Allow user certificates” trong “about:config”. Đảm bảo tên miền (appname.homelab) được trỏ đúng qua hosts hoặc DNS của Tailscale và kiểm tra ngày hết hạn cert. #selfhosted #Android #CACert #Tailscale #Caddy #Vietnam #tựhost #bảo_mật 🚀
https://www.reddit.com/r/selfhosted/comments/1q66i7n/ca_certificates_on
Stefan Neufeind@publicvoit You are right that its so important to have encryption. Given the established ways of running https (with CAs) solutions like #LetsEncrypt were the most straight forward ones. It helped establishing things like #ACME and shorter cert-lifetimes.
Too bad projects like #CACert failed to really establish.
I would have hoped rolling out self-signed certs with #DNSSEC validation would have been considered by browsers as an additional and viable solution completely avoiding CA-hierarchies.
Too bad projects like #CACert failed to really establish.
I would have hoped rolling out self-signed certs with #DNSSEC validation would have been considered by browsers as an additional and viable solution completely avoiding CA-hierarchies.
Andreas Albrecht@fluepke Nutze die schon seit Jahren. Hatte nicht mitbekommen, dass das Angebot eingestellt wird. Scheinbar geringe Verbreitung und Akzeptanz.
Es bleibt, als komplett kostenlose Community-CA nach dem Web-of-Trust-Prinzip, aktuell wohl nur https://cacert.org/
@jwildeboer @mynacol
Great. What do the entries look like that accept #letsencrypt and #CAcert.org for S/MIME certificates and disallow all others?
Great. What do the entries look like that accept #letsencrypt and #CAcert.org for S/MIME certificates and disallow all others?
Jan Wildeboer 😷
This topic has been occupying my brain cycles for quite some time now. It's already so deep down that I spontaneously sing "I am CA" to the Village People's YMCA song :) So it's time to share with you all and get more input. (CA is Certification Authority in x.509 lingo, I'll explain it all in my blog series :) (Why didn't #cacert think about this many years ago? Damn ;)