[Update 2020-03-05: The most up-to-date summary is at 2020.02.29 CAA Rechecking Bug ] Due to the 2020.02.29 CAA Rechecking Bug , we unfortunately need to revoke many Let’s Encrypt TLS/SSL certificates. We’re e-mailing affected subscribers for whom we have contact information. This post and thread wi…

Don’t worry too much. Most browsers do not check if certificates are revoked, and your cached ocsp staple will probably be valid for some days. Just renew the cert, you won’t be kicked offline at midnight UTC.

Hi everybody, We’ve doubled the “Duplicate Certificate limit” (certificatesPerFQDNSet) limit for the duration of this incident.

@JamesLE @jillian @tdelmas @Phil we have to renew a few thousand Certs on one of our CMS Servers ... but we are running against Rate Limits (guess it's the 300 Orders by 3 Hours per Account Rate Limit?!?) ... need a quick Solution on that - as we need to renew thousands of Certs with that Account w…

[image] metaclassing: Pardon the potential misunderstanding on my part, but in reading the baseline requirements you linked to my understanding is that the domains being revoked very shortly are not all issued in error - merely affected by a bug that potentially didn’t apply all required validat…

Great - now all my certs will renew on the same day. Well done!

if your netlify site’s auto-issued cert is affected, check this (manual steps necessary): [image] BUG? - letsencrypt revokes 3 million certs on 4-March-2020 - renewal issue on... Letsencrypt have announced that they will revoke 3 million certs tomorrow (4-March-2020). Which means they wi…

Could you tell me please how to renew the certificate within ISPCOnfig? I tried to remove SSL and Letscencrípt and add it again, but the tool says the certification still need to be renewed!

Ok this is complete crap. Fine, there was a bug. I have less than 12 hours to fix this and right now I am 2500 miles from home on vacation, and all I have with me is a cell phone and a bad 3rd world internet connection. It was a complete fluke that the notification email even got to me before this w…

[image] Phil: Hi everybody, We’ve doubled the “Duplicate Certificate limit” (certificatesPerFQDNSet) limit for the duration of this incident. In addition to this rate limit override, we just deployed another global rate limit override from 300/3h to 10000/3h for newOrdersPerAccount.

Revoking certain certificates on March 4

Help

Topic		Replies	Views
Questions about Renewing before TLS-ALPN-01 Revocations Help	233	52459	March 10, 2022
Sometimes it's required to break the rules - and to change these Praise	19	4005	April 6, 2020
Receiving emails saying certificate are soon to expire, but they are not Help	12	569	August 16, 2022
Too many certificates already issued for exact set of domains Server	21	6049	August 14, 2017
Confused :: expiry warning for non-expiring certificate Help	24	4057	August 17, 2016

Revoking certain certificates on March 4

Related topics