MacMusic  |  PcMusic  |  440 Software  |  440 Forums  |  440TV  |  Zicos
certificate
Search

[$] Linux's missing CRL infrastructure

Monday August 25, 2025. 04:52 PM , from LWN.net
In July 2024,

Let's Encrypt, the nonprofit TLS certificate authority (CA),

announced
that it would be ending support for the

online certificate status protocol
(OCSP), which is used to determine when a server's signing certificate has been
revoked. This prevents a compromised key from being used to impersonate a web
server.
The organization cited privacy concerns, and recommended that people
rely on

certificate revocation lists (CRLs)
instead. On August 6, Let's Encrypt
followed through and disabled its OCSP service. This poses a
problem for Linux systems that must now rely on CRLs because, unlike on other
operating systems, there is no standardized way for Linux programs to share a
CRL cache.
Read more at LWN.net
https://lwn.net/Articles/1033809/

Related News

certificate Linux Turns 34 SlashdotAug 26
crl Linux Foundation says yes to NoSQL via DocumentDB TheRegisterAug 25
used Linux Foundation warns Europe risks falling behind without stronger open source strategy BetaNewsAug 25
systems CachyOS Linux update delivers speed, security and reliability improvements BetaNewsAug 25
linux FBI Warns Russian Hackers Targeted 'Thousands' of Critical US Infrastructure IT Systems SlashdotAug 24
linux's Arch Linux Faces 'Ongoing' DDoS Attack SlashdotAug 23
rely Arch Linux takes a pounding as DDoS attack enters week two TheRegisterAug 22
crls Arch Linux recent service outages LWN.netAug 22
ocsp Up and running with Azure Linux 3.0 InfoWorldAug 21
let's FBI: Russian spies exploiting a 7-year-old Cisco bug to slurp configs from critical infrastructure TheRegisterAug 20
encrypt Lightweight Zephix v8 Linux OS focuses on portability and efficiency BetaNewsAug 18
missing A Linux alternative? Debian/Hurd shows microkernel Unix dream is alive TheRegisterAug 18
infrastructure India's PM laments missing out on global chipmaking dominance – in 1964! TheRegisterAug 18
certificate Various desktop Linux tips for newcomers OS NewsAug 16
crl Another Linux Distro Is Shutting Down SlashdotAug 15
used Linux is about to lose a feature – over a personality clash TheRegisterAug 15
systems Proton Begins Shifting Infrastructure Outside of Switzerland Ahead of Surveillance Legislation SlashdotAug 15
linux The Plan For Linux After Torvalds Has a Kernel of Truth: There Isn't One SlashdotAug 15
linux's Asmi Linux 13 Debian Edition debuts: Xfce desktop never looked so good TheRegisterAug 15
rely AmiBrowser: the Chromium engine running on a Linux host talking to a 68K Amiga application running inside a 68K emulator OS NewsAug 14
News copyright owned by their original publishers | Copyright © 2004 - 2025 Zicos / 440Network
Current Date
Aug, Tue 26 - 09:52 CEST