1. Forum
  2. tqwNet
  3. TQW_GENTECH

  • Lets Encrypt halts expiration alerts - but it's for a good reason

    From TechnologyDaily@1337:1/100 to All on Thu Feb 6 17:30:07 2025
    Lets Encrypt halts expiration alerts - but it's for a good reason

    Date:
    Thu, 06 Feb 2025 17:17:00 +0000

    Description:
    Is anyone using expiration email alerts any more?

    FULL STORY ======================================================================Let's Encrypt will halt certificate expiration emails from June 2025 It says most users have automated renewals anyway Move will also see organization will delete millions of email addresses from its database

    Lets Encrypt has revealed it will no longer notify website administrators
    when their SSL/TLS certificates are about to expire. While this sounds like trouble - it actually seems to be a good thing.

    The news was confirmed by the companys executive director and co-founder,
    Josh Aas, in a blog post noting email notifications will stop going out on June 4, 2025, citing four key reasons. The first one is that a growing majority of subscribers have automated certificate renewal, reliably, rendering the service somewhat obsolete.

    The second reason is to cut down on costs - providing expiration
    notifications costs the organization tens of thousands of dollars per year, Aas said, adding that the money could be better spent elsewhere. Protecting user privacy

    Providing expiration notifications adds complexity to our infrastructure, which takes time and attention to manage and increases the likelihood of mistakes being made, he said in the article. Over the long term, particularly as we add support for new service components, we need to manage overall complexity by phasing out system components that can no longer be justified.

    However, the fourth reason is particularly interesting, since it essentially protects user privacy. Sending out email notifications also means that the organization needs to retain millions of email addresses connected to
    issuance records. As an organization that values privacy, removing this requirement is important to us.

    In other words, Lets Encrypt will delete millions of email addresses from its database, reducing the risk of those emails being snatched by a threat actor.

    For those who would like to continue getting email notifications, Lets
    Encrypt suggests using a third-party service such as Red Sift Certificates Lite, which is free for up to 250 certificates.

    Lets Encrypt is a free, automated, and open certificate authority (CA) that provides SSL/TLS certificates to websites. It helps encrypt web traffic, ensuring secure connections between users and websites (HTTPS). You might
    also like 90-day SSL certificates are coming We've rounded up the best password managers Take a look at our guide to the best authenticator app



    ======================================================================
    Link to news story: https://www.techradar.com/pro/security/lets-encrypt-halts-expiration-alerts-bu t-its-for-a-good-reason


    --- Mystic BBS v1.12 A47 (Linux/64)
    * Origin: tqwNet Technology News (1337:1/100)