| 13 Mar 2026 |
 hexa | Could not validate ARI 'replaces' field :: requester account did not request the certificate being replaced by this order
| 21:08:20 |
|  @katzenmann:frei.chat left the room. | 21:08:35 |
| hexa | this happens when the email address for a certificate gets changed | 21:08:41 |
| hexa | one solution is to yank the whole cert and request a new one | 21:08:57 |
| hexa | wondering if we can and want to try to couple certificates harder with the account name | 21:09:45 |
| 14 Mar 2026 |
 m1cr0man | how does this happen? Like is there cert authorities that let you do it OOB? | 01:29:52 |
| hexa | security.acme.defaults.email = "foo" -> "bar" | 01:36:13 |
| hexa | then we register a new account I guess | 01:36:24 |
| hexa | but the regular quiet renews ask for ari and that raises that error | 01:36:41 |
| hexa | for existing certificates that were created under the foo account | 01:36:52 |
 emily | LE don't even store emails any more, right? | 01:37:29 |
| emily | so the email value is just … changing the hash of the account but not anything about the data that actually gets retained on their end? | 01:37:55 |
| hexa | they don't, but other acme providers might | 01:39:33 |
| hexa | a hash change registers a new account, right? | 01:39:49 |
| hexa | so we have certs in store that don't belong to the new account and therefore fail renewal | 01:40:12 |
| emily | right | 01:42:36 |
| emily | I mean… it might make sense to warn if an email is set / omit it from the hash for LE servers, say | 01:43:08 |
| emily | but that is its own migration separate | 01:43:23 |
| 15 Mar 2026 |
|  @jykrwn_bot:matrix.org joined the room. | 00:32:18 |
 hax404 | NixOS Moderation Bot: I propose to kick jykrwn_bot as I have seen it in many other channels. | 19:59:41 |
|  NixOS Moderation Bot banned @jykrwn_bot:matrix.org (disagreement). | 20:28:04 |
| 18 Mar 2026 |
|  debtquity joined the room. | 21:55:09 |
| 19 Mar 2026 |
|  Miles Dyson set a profile picture. | 18:05:47 |
| 21 Mar 2026 |
| hexa | https://github.com/NixOS/nixpkgs/pull/479209 https://github.com/NixOS/nixpkgs/pull/479212 https://github.com/NixOS/nixpkgs/pull/489983
| 23:38:42 |
| hexa | approved but still unmerged | 23:38:55 |
| 26 May 2021 |
|  @grahamc:nixos.org set the history visibility to "world_readable". | 20:36:34 |
| @grahamc:nixos.org changed the room name to "" from "". | 20:36:34 |
|  Server Stats Discoverer (traveler bot) joined the room. | 20:36:42 |
| @grahamc:nixos.org invited m1cr0man. | 20:36:47 |
| @grahamc:nixos.orgchanged room power levels. | 20:36:52 |
