RE: https://old.mermaid.town/@futzle/116400393579103110
Watching this thread closely, because I’ve been with DNS Made Easy for years 👀
I got an email from #digicert today which states:
> Your account [redacted] is currently exceeding its monthly DNS query threshold
My monthly threshold is 5m queries/month. On a good month, I don’t exceed 15k.
So they’re outright lying to me in order to scare me to upgrade. That’s not cool.
The Internet Last Week
* DigiCert CA bundle expiry
https://help.duo.com/s/article/9451
* Various US DoD route updates
https://www.cidr-report.org/cgi-bin/as-report?as=AS306
https://stat.ripe.net/widget/routing-history#resource=306&starttime=2026-03-29
https://www.cidr-report.org/cgi-bin/as-report?as=AS721
https://stat.ripe.net/widget/routing-history#resource=721&starttime=2026-03-29
https://www.cidr-report.org/cgi-bin/as-report?as=AS27064
https://stat.ripe.net/widget/routing-history#resource=27064&starttime=2026-03-29
https://www.cidr-report.org/cgi-bin/as-report?as=AS27065
https://stat.ripe.net/widget/routing-history#resource=27065&starttime=2026-03-29
* Quad9 enables DoH3 and DoQ
https://quad9.net/news/blog/quad9-enables-dns-over-http-3-and-dns-over-quic/
Anyone in my network at #digicert?
Y'all are aging my team faster than usual due to silly issues. https://github.com/digicert/code-signing-software-trust-action/issues/11
In code-signing-software-trust-action/src/windows_library_setup.ts Line 13 in 7b6e83d reg add "HKEY_LOCAL_MACHINE\\SOFTWARE\\WOW6432Node\\Microsoft\\Cryptography\\Defaults\\Provider\\DigiCert Softw...
Lösung:
mount -o rw,remount /system
cd /system/etc/security/cacerts/
ln -s 6187b673.0 4042bcee.0
ln -s 399e7759.0 3513523f.0
cd /
mount -o ro,remount /system
2/2
Ich wollte ein älteres Tablet mit Android 7 bzw. #LineageOS wieder in Betrieb nehmen mit neuem #Firefox. Leider wurden keine https-Webseiten geladen. Nach einer Stunde Suche habe ich festgestellt, dass die Root-#Zertifikate aufgrund eines veränderten Hashes nicht gefunden wurden.
openssl x509 -in DigiCert_Global_Root_CA.crt -subject_hash_old -noout
openssl x509 -in DigiCert_Global_Root_CA.crt -subject_hash -noout
1/2
TLS certificate lifetimes will be reduced to 47 days worldwide, for enhanced security. System administrators will be forced to implement renewal automation and developers will be forced to update their caching strategies.
https://www.digicert.com/blog/tls-certificate-lifetimes-will-officially-reduce-to-47-days
#news #tech #security #cybersecurity #infosec #encryption #networking #sysadmin #coding #programming #web #browser #digicert
Tiens, chez #DigiCert, ils vont réduire la durée de validité des certificats #TLS à 47 jours à compter du 15 mars 2029 (si on arrive jusque-là…) ; avec deux étapes de réductions successives intermédiaires, les 15 mars 2026 et 2027 :
“TLS Certificate Lifetimes Will Officially Reduce to 47 Days” :
https://www.digicert.com/blog/tls-certificate-lifetimes-will-officially-reduce-to-47-days
Blair
Dataplane.org
Kevin Griffin - Microsoft MVP
Torsten 
aaron
Lorenzo Ancora 
Flominator
Trit’
Hacker News