Bug #17486

Upgrade Let's Encrypt client to be ACMEv2 compatible

Added by intrigeri 2020-02-20 07:41:28 . Updated 2020-03-16 20:37:02 .

Status:
Resolved
Priority:
Elevated
Assignee:
zen
Category:
Target version:
Start date:
Due date:
% Done:

0%

Feature Branch:
Type of work:
Sysadmin
Blueprint:

Starter:
Affected tool:
Deliverable for:

Description

All our Stretch systems currently use the ACMEv1 protocol to request LE certs.
Beginning June 1, 2020, this will stop working.


Subtasks


Related issues

Blocks Tails - Feature #13242: Core work: Sysadmin (Maintain our already existing services) Confirmed 2017-06-29

History

#1 Updated by intrigeri 2020-02-20 07:42:11

  • blocks Feature #13242: Core work: Sysadmin (Maintain our already existing services) added

#2 Updated by intrigeri 2020-02-20 08:08:10

  • Status changed from Confirmed to Needs Validation
  • Assignee changed from intrigeri to Sysadmins
  • Target version changed from Tails_4.6 to Tails_4.5

https://git.tails.boum.org/puppet-tails/commit/?id=6f16b55853e3ee7a4d5a2920f83625b6e5a39808 should fix it.

Let’s come back to this in a few weeks and close this ticket if we’ve received no new warning email from Let’s Encrypt by then.

#3 Updated by zen 2020-02-20 12:51:27

  • Assignee changed from Sysadmins to zen

#4 Updated by zen 2020-03-16 20:37:02

  • Status changed from Needs Validation to Resolved

I think this is resolved because (1) it’s been almost a month and we got no warnings, and (2) the certificate for https://redmine.tails.boum.org was issues on March 3rd 2020, after the change was in place.