Episode 1061 • • 1:18:35 - 1:26:23
1061: SN 1061: More GhostPosting - RAM Crisis Hits Firewalls
Let's Encrypt's New Six-Day TLS Certificates
Let's Encrypt has made short-lived and IP address certificates generally available, valid for 160 hours (just over six days). These opt-in certificates aim to improve security by requiring more frequent validation and reducing reliance on unreliable revocation mechanisms. While the default certificate lifetime will gradually shorten from 90 to 45 days, the necessity of these shorter-lived certificates is questioned, especially given the perceived robustness of modern revocation systems and encryption.