[Dev] [Clarind-devel] HEADS UP: Google Chrome is "Gradually sunsetting SHA-1" SSL certificates

Daniël de Kok daniel.de-kok at uni-tuebingen.de
Thu Sep 18 14:16:55 CEST 2014


On Thu, Sep 18, 2014 at 2:09 PM, "Jörg Knappen" <jknappen at web.de> wrote:
> I performed that check and our certificates are affected from the start at
> DFN (and so will be probably
> all certificates using the DFN AAI issued before a certain date).

Relevant info from the DFN (probably from before Google's announcement):

https://www.pki.dfn.de/faqpki/faqpki-sha2/

> Sigh .... more work to do ....

I don't envy the CAs ;). Though one wonders why Heartbleed wasn't used
as an opportunity by T-Systems or the DFN to fix this once and for
all. Oh, well...

Take care,
Daniël


More information about the Dev mailing list