Bug #17486: Upgrade Let's Encrypt client to be ACMEv2 compatible

Bug #17486

Upgrade Let's Encrypt client to be ACMEv2 compatible

Added by intrigeri 2020-02-20 07:41:28 . Updated 2020-03-16 20:37:02 .

Status:

Resolved

Priority:

Elevated

Assignee:

zen

Category:

Target version:

Tails_4.5

Start date:

Due date:

% Done:

Feature Branch:

Type of work:

Sysadmin

Blueprint:

Starter:

Affected tool:

Deliverable for:

Description

All our Stretch systems currently use the ACMEv1 protocol to request LE certs.
Beginning June 1, 2020, this will stop working.

Subtasks

Related issues

Blocks Tails - Feature #13242: Core work: Sysadmin (Maintain our already existing services)

Confirmed

2017-06-29

History

#1 Updated by intrigeri 2020-02-20 07:42:11

blocks Feature #13242: Core work: Sysadmin (Maintain our already existing services) added

#2 Updated by intrigeri 2020-02-20 08:08:10

Status changed from Confirmed to Needs Validation
Assignee changed from intrigeri to Sysadmins
Target version changed from Tails_4.6 to Tails_4.5

https://git.tails.boum.org/puppet-tails/commit/?id=6f16b55853e3ee7a4d5a2920f83625b6e5a39808 should fix it.

Let’s come back to this in a few weeks and close this ticket if we’ve received no new warning email from Let’s Encrypt by then.

#3 Updated by zen 2020-02-20 12:51:27

Assignee changed from Sysadmins to zen

#4 Updated by zen 2020-03-16 20:37:02

Status changed from Needs Validation to Resolved

I think this is resolved because (1) it’s been almost a month and we got no warnings, and (2) the certificate for https://redmine.tails.boum.org was issues on March 3rd 2020, after the change was in place.