Not really Let’s Encrypt related, but as we’re quite the tech-savvy’s here (at least a few of you ;)), I thought we might as well discuss it
So I thought to myself: cool, let’s generate a CSR in light of this new feature, so we can generate the certificate when the feature is implemented!
Error Loading request extension section v3_req
140307257013904:error:22097082:X509 V3 routines:DO_EXT_NCONF:unknown extension name:v3_conf.c:125:
140307257013904:error:22098080:X509 V3 routines:X509V3_EXT_nconf:error in extension:v3_conf.c:95:name=tlsfeature, value=status_request
Now, as I am not running some mission critical server here and I’m running Gentoo, it’s actually quite easy to compile ánd maintain a piece of software directly from Git. Actually, my current OpenSSL is the 1.0.2-stable branch directly from Git, because 1.0.2d was missing a feature I wanted
But I was wondering: how do you think of running bleeding edge security software like OpenSSL directly from Git? Could it actually be móre safe, because some bugs might be patched sooner? Or do the costs outweigh the benefits?