Jan Wildeboer 😷May 16

(soon a blog post)

Thinking about setting up a little cooperative called #nerdcert. Where we use letsencrypt style certificate generation, renewals and distribution, with ACME support, but only for certificates that have EKU (Extended Key Usage) entries that go beyond serverAuth, the only thing Google will accept from mid next year :) Context: Thread and replies at https://social.wildeboer.net/@jwildeboer/114517884390728050

Jan Wildeboer 😷:krulorange: (@jwildeboer@social.wildeboer.net)

@phlash@mastodon.me.uk Yep. And they could allow more EKUs on the second PKI. CodeSigning, MailProtection. LetsEncrypt should be more than just the minimal ServerAuth that Google will accept. @IchEben@tootdorf.de

social.wildeboer.net
Show threadMartin Schröder
@jwildeboer
@cacert exists.
May 17 at 10:30amWeb