Let’s Encrypt Advisory

Let’s Encrypt recently announced that it had discovered a bug in its CAA (Certification Authority Authorization) code, whereby after checking the any CAA records a 30 day period is granted in which certificates might be issued to a particular Web server even if a prohibiting CAA record had been created in the interim. Consequently Let’s Encrypt have declared that at 20:00 04-03-2020 they “need to revoke the certificates that were affected”.

We are confident that the way Netnorth implement Let’s Encrypt Certificate renewal means our hosting will not be affected by this issue, corroborated by checking the published list of affected certificate serials. That said, we will continue to monitor te issue and react accordingly.

Bookmark the permalink.

Leave a Reply