Mar 27, 2015:

11:35 PM Changeset [2692] by btidor
Use SHA-256 to sign CSRs (in case it makes a difference)
11:18 PM Changeset [2691] by btidor
Rename obsolete private key
10:53 PM Changeset [2690] by andersk
Certificate and configuration for rcc-d7dev [help.mit.edu #3182781]

Mar 24, 2015:

2:11 PM Changeset [2689] by geofft
Certificate and configuration for mafia-app [help.mit.edu #3182926]

Mar 17, 2015:

3:23 PM Changeset [2688] by geofft
Remove SSL configuration for mitchief The certificate has expired and the site owners haven't replied to our renewal request.

Mar 16, 2015:

11:35 AM Changeset [2687] by geofft
Add missing intermediate for ldpreload.com Some CA bundles, notably Debian's ca-certificates, don't include the USERTrust RSA Certification Authority cert.

Mar 13, 2015:

6:33 PM Ticket #400 (SHA-1 certificates from mitcert since 2013 will be degraded by Chrome) closed by geofft
fixed: Most of this was done a while back (I believe achernya sent out a ton …

Mar 12, 2015:

11:55 PM Ticket #233 (Do something sensible on 'athrun scripts scripts -start') closed by geofft
wontfix: We no longer refer to scripts-start on our website (just scripts), …
11:50 PM Ticket #383 (Konami code detection takes quadratic time in number of keystrokes) closed by andersk
fixed: Fixed by …
5:24 PM Changeset [2686] by geofft
Certificate renewal for luke.wf / www.luke.wf This uses the 2048-bit key and SHA-256 for both cert and intermediate.
4:11 PM Changeset [2685] by mitchb
Let's not create self-signed CAs You know, while we're fixing that command in the fear that someone will end up using this file as guidelines for something other than our test server.
4:30 AM Changeset [2684] by geofft
reify-vhost.py: Remove comment about removing SSLCertificateKeyFile line Even though it doesn't differ from the global default, it's clearer to keep that line in there. So let's stop planning to remove it.
4:17 AM Changeset [2683] by andersk
install-howto: Update openssl commands for modern crypto Just in case someone is looking here when generating a real certificate for some reason.
3:14 AM Changeset [2682] by geofft
Certificate renewal for ldpreload.com This uses the 2048-bit key and SHA-256 (and a SHA-384 intermediate).

Mar 10, 2015:

5:59 PM Changeset [2681] by geofft
Remove three vhosts that are no longer hosted by scripts
4:09 AM Ticket #410 (Automatically request renewals of mit.edu certs) created by geofft
Our certificate authority, InCommon, provides …
3:43 AM Ticket #349 (TLS SNI alerts on LDAP vhosts) closed by geofft
invalid: I think so, and also this is fixed in OpenSSL 1.0, which is pretty …
12:49 AM Changeset [2680] by andersk
Update krb5 to 1.11.5-18.fc20
12:48 AM Changeset [2679] by andersk
Add missing mock configuration for scripts-fc20-i386

Mar 5, 2015:

10:20 PM Changeset [2678] by andersk
403 error: add another case for documents that the server cannot read

Mar 2, 2015:

8:00 PM Changeset [2677] by andersk
Also move noaccount page to local disk
7:50 PM Changeset [2676] by andersk
Move /__scripts to local disk
7:18 PM Changeset [2675] by andersk
Don’t override ErrorDocument 403 in .htaccess
7:03 PM Changeset [2674] by andersk
Show a more informative error for directories with missing index.html

Feb 28, 2015:

9:38 PM Changeset [2673] by andersk
Update httpd

Feb 27, 2015:

5:34 PM Changeset [2672] by andersk
Update allowed-setugid.list Prune members that are no longer set[ug]id. Also, polkit-agent-helper-1 moved from libexec to lib.
Note: See TracTimeline for information about the timeline view.