Topic: Let S Encrypt

Security Now episode 1061, recorded on January 20th, 2026, features discussions on the return of Ghost Poster, malicious browser extensions, and the impact of RAM pricing on PCs and enterprise networking equipment. Other topics include FTC actions against General Motors, Germany's planned internet surveillance legislation, Grubhub's extortion by Shiny Hunters, and the availability of six-day certificates from Let's Encrypt.

Let's Encrypt has made short-lived and IP address certificates generally available, valid for 160 hours (just over six days). These opt-in certificates aim to improve security by requiring more frequent validation and reducing reliance on unreliable revocation mechanisms. While the default certificate lifetime will gradually shorten from 90 to 45 days, the necessity of these shorter-lived certificates is questioned, especially given the perceived robustness of modern revocation systems and encryption.