Koozali.org formerly Contribs.org

Notice from Letsencrypt 2020.02.29 CAA Rechecking Bug

Offline warren

  • *
  • 280
Notice from Letsencrypt 2020.02.29 CAA Rechecking Bug
« on: March 03, 2020, 12:05:45 PM »

Heads up :
Got email notice for one of the sites running letsencrypt :

We recently discovered a bug in the Let's Encrypt certificate authority code,
described here:


Unfortunately, this means we need to revoke the certificates that were affected
by this bug, which includes one or more of your certificates. To avoid
disruption, you'll need to renew and replace your affected certificate(s) by
Wednesday, March 4, 2020. We sincerely apologize for the issue.

If you're not able to renew your certificate by March 4, the date we are
required to revoke these certificates, visitors to your site will see security
warnings until you do renew the certificate. Your ACME client documentation
should explain how to renew.

If you are using Certbot, the command to renew is:

certbot renew --force-renewal

If you need help, please visit our community support forum:

Please search thoroughly for a solution before you post a new question. Let's
Encrypt staff will help our community try to answer unresolved questions as
quickly as possible.

Your affected certificate(s), listed by serial number and domain names:

Ran a forced cert update and all seems well.
Code: [Select]
/usr/bin/dehydrated -c -x

Offline ReetP

  • *
  • 2,570
Re: Notice from Letsencrypt 2020.02.29 CAA Rechecking Bug
« Reply #1 on: March 03, 2020, 09:45:10 PM »
1. Read the Manual
2. Read the Wiki
3. Don't ask for support on Unsupported versions of software
4. I have a job, wife, and kids and do this in my spare time. If you want something fixed, please help.

Bugs are easier than you think: http://wiki.contribs.org/Bugzilla_Help

If you love SME and don't want to lose it, join in: http://wiki.contribs.org/Koozali_Foundation