Welp, the #golang autocert (https://golang.org/x/crypto/acme/autocert …) @letsencrypt package is now broken because it relies on tls-sni-01, which just got emergency shut down:
https://news.ycombinator.com/item?id=16112237 …
https://letsencrypt.status.io/pages/incident/55957a99e800baa4470002da/5a55777ed9a9c1024c00b241 …
... "disabled due to strong credibility of a vulnerability report"


-
-
Odgovor korisnicima @bradfitz @letsencrypt
Oof shit, I was using that. (Not the lib, but the protocol)
1 reply 0 proslijeđenih tweetova 0 korisnika označava da im se sviđa -
Odgovor korisnicima @raggi @letsencrypt
You and the rest of the internet :)
1 reply 0 proslijeđenih tweetova 0 korisnika označava da im se sviđa -
Odgovor korisnicima @bradfitz @letsencrypt
I was under the impression the other protocols were more common. I wrote against sni because it's wired into my client hello based load balancer/router.
1 reply 0 proslijeđenih tweetova 0 korisnika označava da im se sviđa -
I drop to splice after the negotiation, that's going to be a pain to replicate, might be easier to rearchitect
0 proslijeđenih tweetova 0 korisnika označava da im se sviđa
Anyway, Sunday me can dealpic.twitter.com/FcrRukFGi1
22:57 - 9. sij 2018.
0 replies
0 proslijeđenih tweetova
0 korisnika označava da im se sviđa
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.