• Inviting everyone who uses WordPress management tools in Plesk
    The Plesk team is conducting a 60-minute research session that includes an interview and a moderated usability test.
    To participate, please use this link .
    Your experience will help shape product decisions and ensure the tools better support real-world use cases.

Question Let's Encrypt revoking 2.6% of LE certs on March 4 2020

B

Bobbbb

Regular Pleskian
Hello,

Let's Encrypt plans to revoke 3,048,289 certificates on March 4 due to a CAA rechecking bug (see links below).

My question is... Using the Plesk Let's Encrypt extension, via GUI or command line, is there a way to force renew all LE certificates, managed by the Plesk Let's Encrypt extension, which would make sure that the LE cert revocation would not affect any Plesk managed domains on March 4?

community.letsencrypt.org

Revoking certain certificates on March 4

[Update 2020-03-05: The most up-to-date summary is at 2020.02.29 CAA Rechecking Bug] Due to the 2020.02.29 CAA Rechecking Bug, we unfortunately need to revoke many Let’s Encrypt TLS/SSL certificates. We’re e-mailing affected subscribers for whom we have contact information. This post and...
community.letsencrypt.org community.letsencrypt.org

https://twitter.com/x/status/1234930970719117312

community.letsencrypt.org

2020.02.29 CAA Rechecking Bug

On 2020-02-29 UTC, Let’s Encrypt found a bug in our CAA code. Our CA software, Boulder, checks for CAA records at the same time it validates a subscriber’s control of a domain name. Most subscribers issue a certificate immediately after domain control validation, but we consider a validation...
community.letsencrypt.org community.letsencrypt.org

Best Regards,
Bob
 
Monty said:
Please see the discussions here:

Let's Encrypt extension

Hi, I've got a question concerning the setting "send-notifications-interval" in panel.ini. The documentation (https://docs.plesk.com/en-US/onyx/administrator-guide/plesk-administration/managing-let’s-encrypt-settings.78586/) says the default value is "1 day", however it's not very clear on the...
talk.plesk.com talk.plesk.com
Click to expand...

Thank you. For others that find this thread, first... Your link includes a helpful script to check for affected certificates. I also found this post indicating a KB and a (maybe) potential Let's Encrypt extension update may address this, soon...

Let's Encrypt extension

Hi, I've got a question concerning the setting "send-notifications-interval" in panel.ini. The documentation (https://docs.plesk.com/en-US/onyx/administrator-guide/plesk-administration/managing-let’s-encrypt-settings.78586/) says the default value is "1 day", however it's not very clear on the...
talk.plesk.com talk.plesk.com
 
You must log in or register to reply here.

Similar threads

M
Issue Let's Encrypt Bulk Domain Renewal
Replies
4
Views
3K
MacGyver
M
AmaZili Communication
Error in let's encrypt certificate generation
Replies
3
Views
2K
Sebahat.hadzhi
Sebahat.hadzhi
T
Question Let's Encrypt SSL certificate issuance on new subdomain take too long
Replies
2
Views
2K
tertek
T
F
Resolved SSL It! / Lets Encrypt /wildcard auto renew not working
Replies
3
Views
3K
fabs
F
P
Question Plesk: LetsEncrypt renewals sporadically failing/skipped
Replies
1
Views
1K
Sebahat.hadzhi
Sebahat.hadzhi
Back
Top