Trusted Lifetime subscriber
So the end is near for the distrust of Symantec, and its various subsidiary CA's, SSL certs via Chrome.
Just FYI, I'm running Chrome beta so on version70.0.3538.45 now, getting this when browsing to secure.2degreesbroadband.co.nz
Probably best to get onto this asap, as the stable release of 70 is just around the corner, more info here
cc @NickMack
|
|
ID Verified Trusted
Lizard Networks Subscriber
seems to be a valid cert imo...
seeing this though,
#include <std_disclaimer>
Any comments made are personal opinion and do not reflect directly on the position my current or past employers may have.
Trusted Lifetime subscriber
Trusted Lifetime subscriber
I'm assuming you're both using Chrome 70, and that you're both aware GeoTrust and RapidSSL were owned by Symantec before being purchased by Digicert. And that you're both aware of the Google/Symantec spat.
Copy/paste from the Google blog:
We previously announced plans to deprecate Chrome’s trust in the Symantec certificate authority (including Symantec-owned brands like Thawte, VeriSign, Equifax, GeoTrust, and RapidSSL)
Chrome 70 Starting in Chrome 70, all remaining Symantec SSL/TLS certificates will stop working, resulting in a certificate error like the one shown above. To check if your certificate will be affected, visit your site in Chrome today and open up DevTools. You’ll see a message in the console telling you if you need to replace your certificate.
ID Verified Trusted Lizard Networks Subscriber
#include <std_disclaimer>
Any comments made are personal opinion and do not reflect directly on the position my current or past employers may have.
Trusted Lifetime subscriber
Trusted Lifetime subscriber
skewt:
Ahh, I had saw the bit about certs before 2016 being blocked but didn't realize they were going to block ALL certs from those providers
Yeah that was for Chrome 66, the final nail in the coffin will be Chrome 70 distrusting all certs that were issued by the various Symantec brands.
I believe all new certs under those brands are issued by Digicert now, e.g.:
a
Moderator ID Verified Trusted Lifetime subscriber
Michael Murphy | https://murfy.nz
Referral Links: Quic Broadband (use R122101E7CV7Q for free setup)
Are you happy with what you get from Geekzone? Please consider supporting us by subscribing.
Opinions are my own and not the views of my employer.
Trusted Lifetime subscriber
Administrator ID Verified Trusted Geekzone Lifetime subscriber
Referral links: Quic Broadband (free setup code: R587125ERQ6VE) | Samsung | AliExpress | Wise | Sharesies
Support Geekzone by subscribing (browse ads-free), or making a one-off or recurring donation through PressPatron.
Trusted Lifetime subscriber
ID Verified Trusted Lifetime subscriber
I'm a geek, a gamer, a dad, a Quic user, and an IT Professional. I have a full rack home lab, size 15 feet, an epic beard and Asperger's. I'm a bit of a Cypherpunk, who believes information wants to be free and the Net interprets censorship as damage and routes around it. If you use my Quic signup you can also use the code R570394EKGIZ8 for free setup. Opinions are my own and not the views of my employer.
Moderator ID Verified Trusted Lifetime subscriber
Michael Murphy | https://murfy.nz
Referral Links: Quic Broadband (use R122101E7CV7Q for free setup)
Are you happy with what you get from Geekzone? Please consider supporting us by subscribing.
Opinions are my own and not the views of my employer.
Trusted Lifetime subscriber
|
|
|
