summaryrefslogtreecommitdiffstats
path: root/certs/public
Commit message (Collapse)AuthorAgeFiles
* Define new host "calima" serving Nextcloud.Guilhem Moulin2018-12-032
|
* nginx: Don't hard-code the HPKP headers.Guilhem Moulin2016-07-124
| | | | | Instead, lookup the pubkeys and compute the digests on the fly. But never modify the actual header snippet to avoid locking our users out.
* Change the pubkey extension from .pem to .pub.Guilhem Moulin2016-07-108
|
* certs/public: fetch each cert's pubkey (SPKI), not the cert itself.Guilhem Moulin2016-06-158
| | | | To avoid new commits upon cert renewal.
* Renew cert for https://lists.fripost.org.Guilhem Moulin2016-05-281
|
* Add an ansible module 'fetch_cmd' to fetch the output of a remote command ↵Guilhem Moulin2016-05-188
| | | | | | locally. And use this to fetch all X.509 leaf certificates.
* Renew imap.fripost.org:993 and smtp.fripost.org:587 X.509 certificates.Guilhem Moulin2016-05-182
|
* Reissue certs on civett and elefant since LE's X3 intermediate CA has better ↵Guilhem Moulin2016-03-275
| | | | support for XP.
* Let's Encrypt: Only reload (as opposed to restart) postfix/nginx after ↵Guilhem Moulin2016-03-053
| | | | renewing the cert
* Let's EncryptGuilhem Moulin2016-03-028
|
* Use the Let's Encrypt CA for our public certs.Guilhem Moulin2015-12-208
|
* Automatically fetch X.509 certificates, and add them to git.Guilhem Moulin2015-12-038