| 10 Apr 2026 |
 Arian | All the revoked certs work fine for me on chrome for android | 20:51:09 |
| Arian | I guess it's because chrome only pushes revoked certs through updates? | 20:51:53 |
 ThinkChaos | Yeah only Firefox has good (i.e. functional) revocation support ATM thanks to the mentioned CRLite.
This blog post explains how it works nicely: https://hacks.mozilla.org/2025/08/crlite-fast-private-and-comprehensive-certificate-revocation-checking-in-firefox/
You should consider using FF on Android just for extensions: it supports standard WebExts like uBlock Origin! | 23:02:19 |
| 11 Apr 2026 |
|  @rasmata:matrix.org joined the room. | 19:17:38 |
| @rasmata:matrix.org left the room. | 19:17:40 |
| 12 Apr 2026 |
|  leona changed their profile picture. | 12:15:37 |
| 13 Apr 2026 |
|  Alesya changed their display name from Alesya Huzik to Alesya. | 01:44:34 |
| 14 Apr 2026 |
|  Lukas joined the room. | 01:53:57 |
| 23 Apr 2026 |
| @rasmata:matrix.org joined the room. | 19:20:09 |
| @rasmata:matrix.org left the room. | 19:20:13 |
| 27 Apr 2026 |
|  Ninja joined the room. | 14:32:13 |
| 2 May 2026 |
|  Tom changed their profile picture. | 18:40:56 |
| 8 May 2026 |
 hexa | https://letsencrypt.status.io/ | 19:44:49 |
| hexa |
We have been made aware of a potential incident and are shutting down all issuance.
| 19:45:07 |
 K900 | Wew | 19:45:25 |
| hexa | https://bugzilla.mozilla.org/show_bug.cgi?id=2038351 | 21:46:48 |
| 9 May 2026 |
 m1cr0man | Does this actually affect us? Afaik you can't issue a subordinate with lego | 01:31:06 |
| hexa | it prevented me from renewing | 11:32:12 |
| 12 May 2026 |
|  Richard Tichý joined the room. | 11:24:50 |
| 13 May 2026 |
| hexa | https://github.com/go-acme/lego/releases/tag/v5.0.3 | 13:50:49 |
| hexa | Redacted or Malformed Event | 13:51:40 |
| hexa | removing extraLegoRenewFlags will change hash data | 14:42:44 |
| hexa | osnyx (he/him) I don't see a way to make the lego 5.0 migration not renew all certs fwiw | 15:29:36 |
| hexa | https://go-acme.github.io/lego/migration/cli/index.html | 15:29:37 |
| hexa | Redacted or Malformed Event | 15:29:47 |
| hexa | we'll drop renew flags, because renew is gone | 15:35:12 |
| hexa | and both global and renew flags now live in run | 15:35:25 |
| hexa | can't invalidate the hashdata harder | 15:35:43 |
| hexa | + lego run --accept-tos --path . --no-random-sleep --http --http.address :80 --server https://acme.test/dir --key-type ec256 --domains builtin.example.test --domains 192.168.1.2
2026-05-13T15:45:13.971858291Z INFO Private key saved. filepath=accounts/acme.test/noemail@example.com/noemail@example.com.key
2026-05-13T15:45:13.979702584Z ERROR Error error="renew: registration: the account noemail@example.com is not registered"
| 15:51:05 |
| hexa | so on email change we not get "not registered" | 15:51:21 |
