~mdw / zones / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: fd848de) | patch
Use a public key for the main webserver's TLSA record.
authorMark Wooding <mdw@distorted.org.uk>
Wed, 27 Jan 2016 14:04:30 +0000 (14:04 +0000)
committerMark Wooding <mdw@distorted.org.uk>
Wed, 27 Jan 2016 14:04:30 +0000 (14:04 +0000)
commit84bfdc6249b8640f3284b125428cd141fb4c316a
treec25e2e458aa52c62e5f828dc7f9813429485f080tree | snapshot (tar.gz zip)
parentfd848debb8306fc514bcceda4119ec85ae416fb8commit | diff
Use a public key for the main webserver's TLSA record.

We're changing CA to LetsEncrypt, so the old certificate won't work any
more.  The LetsEncrypt certificate will change quite frequently, but the
public key is unchanged, so pin that in the TLSA record.
certs/http-server-www#1.cert [deleted file] blob | blame | history
distorted.lisp diff | blob | blame | history
keys/https-stratocaster.pub [new file with mode: 0644] blob
Zone files for the DNS zones I administer