nanog mailing list archives

Re: Trivial change in Public Cert behaviour coming soon

From: Chris Adams via NANOG <nanog () lists nanog org>
Date: Fri, 23 May 2025 21:48:48 -0500

Once upon a time, Grant Taylor via NANOG <nanog () lists nanog org> said:

Solution 2 (or worse if private CA) involves additional
configuration, additional complexity, additional certificates & keys
to secure, and additional things to break.


If you have such a complicated multi-server setup that includes a need
to encrypt your internal traffic, you should definitely be using some
configuration management system to make sure you have all the encryption
set correctly... at which point another cert is a trivial amount of
effort.

-- 
Chris Adams <cma () cmadams net>
_______________________________________________
NANOG mailing list 
https://lists.nanog.org/archives/list/nanog () lists nanog org/message/TSBFMAI365DGMMPSXC62FMZZLHSGKTFP/

Current thread:

Re: Trivial change in Public Cert behaviour coming soon, (continued)
- - - Re: Trivial change in Public Cert behaviour coming soon Michael Thomas via NANOG (May 27)
    - Re: Massive change in Public Cert behaviour coming soon John R. Levine via NANOG (May 27)
    - Re: Massive change in Public Cert behaviour coming soon Grant Taylor via NANOG (May 27)
    - Re: Massive change in Public Cert behaviour coming soon Eliot Lear via NANOG (May 27)
    - Re: Massive change in Public Cert behaviour coming soon Crist Clark via NANOG (May 27)
    - Re: Massive change in Public Cert behaviour coming soon Grant Taylor via NANOG (May 27)
    - Re: Trivial change in Public Cert behaviour coming soon John Levine via NANOG (May 27)
    - Re: Trivial change in Public Cert behaviour coming soon Grant Taylor via NANOG (May 27)
    - Re: Trivial change in Public Cert behaviour coming soon John Levine via NANOG (May 27)
    - Re: Trivial change in Public Cert behaviour coming soon Grant Taylor via NANOG (May 27)
    - Re: Trivial change in Public Cert behaviour coming soon Chris Adams via NANOG (May 27)
    - Re: Trivial change in Public Cert behaviour coming soon Grant Taylor via NANOG (May 27)
    - Re: Massive change in Public Cert behaviour coming soon brent saner via NANOG (May 27)
    - Message not available
    - Message not available
    - Message not available
    - Message not available
    - Message not available
    - Re: Massive change in Public Cert behaviour coming soon Tom Beecher via NANOG (May 27)
    - Re: Massive change in Public Cert behaviour coming soon Jay Acuna via NANOG (May 27)
    - Re: Massive change in Public Cert behaviour coming soon William Herrin via NANOG (May 27)
    - Message not available
    - Message not available
    - Message not available
    - Message not available
    - Message not available
    - Re: Massive change in Public Cert behaviour coming soon nanog--- via NANOG (May 27)
    - Re: Massive change in Public Cert behaviour coming soon William Herrin via NANOG (May 27)
    - Re: Massive change in Public Cert behaviour coming soon Christian de Larrinaga via NANOG (May 19)
    - Re: Massive change in Public Cert behaviour coming soon Tom Beecher via NANOG (May 19)
    - Re: Massive change in Public Cert behaviour coming soon Jay Acuna via NANOG (May 19)

(Thread continues...)