Commit message (Collapse) | Author | Age | Files | |
---|---|---|---|---|
* | nginx: Don't hard-code the HPKP headers. | Guilhem Moulin | 2016-07-12 | 4 |
| | | | | | Instead, lookup the pubkeys and compute the digests on the fly. But never modify the actual header snippet to avoid locking our users out. | |||
* | Change the pubkey extension from .pem to .pub. | Guilhem Moulin | 2016-07-10 | 8 |
| | ||||
* | certs/public: fetch each cert's pubkey (SPKI), not the cert itself. | Guilhem Moulin | 2016-06-15 | 8 |
| | | | | To avoid new commits upon cert renewal. | |||
* | Renew cert for https://lists.fripost.org. | Guilhem Moulin | 2016-05-28 | 1 |
| | ||||
* | Add an ansible module 'fetch_cmd' to fetch the output of a remote command ↵ | Guilhem Moulin | 2016-05-18 | 8 |
| | | | | | | locally. And use this to fetch all X.509 leaf certificates. | |||
* | Renew imap.fripost.org:993 and smtp.fripost.org:587 X.509 certificates. | Guilhem Moulin | 2016-05-18 | 2 |
| | ||||
* | Reissue certs on civett and elefant since LE's X3 intermediate CA has better ↵ | Guilhem Moulin | 2016-03-27 | 5 |
| | | | | support for XP. | |||
* | Let's Encrypt: Only reload (as opposed to restart) postfix/nginx after ↵ | Guilhem Moulin | 2016-03-05 | 3 |
| | | | | renewing the cert | |||
* | Let's Encrypt | Guilhem Moulin | 2016-03-02 | 8 |
| | ||||
* | Use the Let's Encrypt CA for our public certs. | Guilhem Moulin | 2015-12-20 | 8 |
| | ||||
* | Automatically fetch X.509 certificates, and add them to git. | Guilhem Moulin | 2015-12-03 | 8 |