Networking/TLSCerts: Difference between revisions

From London Hackspace Wiki
(thats actually 'adminstuff')
m (no more denning participating in TLScerts.)
 
(7 intermediate revisions by 2 users not shown)
Line 7: Line 7:
! Host !! Service !! CN !! SubjectAltnames !! Issuer !! Expirey !! notes
! Host !! Service !! CN !! SubjectAltnames !! Issuer !! Expirey !! notes
|-
|-
| [[Turing]] || SMTP || turing.hackspace.org.uk || turing.hackspace.org.uk, hackspace.org.uk || Startcom || Expired! || turing is the mx for london.hackspace.org.uk, hackspace.org.uk and m0hsl.org
| [[Turing]] || SMTP || turing.hackspace.org.uk || turing.hackspace.org.uk || Lets Encrypt || Auto Renew, hopefully || turing is the mx for london.hackspace.org.uk, hackspace.org.uk and m0hsl.org
|-
|-
| [[Turing]] || LDAP || same cert as above || " || " || " || used by the LDAP replica on [[denning]]
| [[Turing]] || LDAP || same cert as above || " || " || " || used by the LDAP replica on ldap-secondary on the hackspace local network.
|-
|-
| [[Turing]] || main website || london.hackspace.org.uk ||london.hackspace.org.uk  || Geotrust || 17/11/17 ||
| [[Turing]] || main website || london.hackspace.org.uk ||london.hackspace.org.uk  || || ||
|-
|-
| [[Knuth]] || wiki || wiki.london.hackspace.org.uk || wiki.london.hackspace.org.uk || Lets Encrypt || May 17 19:58:00 2016 GMT || Auto renew(?)
| [[Knuth]] || wiki || wiki.london.hackspace.org.uk || wiki.london.hackspace.org.uk || Lets Encrypt || Auto Renew ||  
|-
|-
| [[Denning]] || ldap || ldap.lan.london.hackspace.org.uk || ldap.lan.london.hackspace.org.uk, hackspace.org.uk || Startcom || Sep 20 23:31:11 2016 GMT || Read only replica of the DB on turing, clients verify the cert. The hackspace.org.uk altname is an artefact of the way StartCom works and is not wanted.
| ldap-secondary || ldap || ldap.lan.london.hackspace.org.uk || ldap.lan.london.hackspace.org.uk || Lets Encrypt || Auto renew || Read only replica of the DB on turing, clients verify the cert.
|-
|-
| [[adminstuff]] || redmine || bugs.london.hackspace.org.uk || bugs.london.hackspace.org.uk, hackspace.org.uk || StartCom || May 12 10:45:06 2016 GMT || The hackspace.org.uk altname is an artefact of the way StartCom works and is not wanted.
| [[adminstuff]] || redmine || adminstuff.london.hackspace.org.uk || adminstuff.london.hackspace.org.uk,bugs.london.hackspace.org.uk || Lets Encrypt || Auto Renew, hopefully ||  
|-
|-
| [[adminstuff]] || apache2 || adminstuff.london.hackspace.org.uk || adminstuff.london.hackspace.org.uk, hackspace.org.uk || StartCom || May 12 17:25:03 2016 GMT || The hackspace.org.uk altname is an artefact of the way StartCom works and is not wanted.
| [[adminstuff]] || apache2 || same cert as above || " || " || " ||  
|-
|-
| [[adminstuff]] || freeradius || spacefed.london.hackspace.org.uk || spacefed.london.hackspace.org.uk, hackspace.org.uk || StartCom || May 12 17:25:03 2016 GMT || Used for spacefed, the clients need to be able to verify the cert. The hackspace.org.uk altname is an artefact of the way StartCom works and is not wanted.
| [[adminstuff]] || freeradius || spacefed.london.hackspace.org.uk || spacefed.london.hackspace.org.uk || Lets Encrypt || Auto Renew, hopefully || Used for spacefed, the clients need to be able to verify the cert.
|-
| [[Equipment/Landin#ACserver|ACserver]]  || apache2 || acserver.london.hackspace.org.uk || acserver.london.hackspace.org.uk || " || " || Used for the acserver website.
|-
| [[Equipment/Landin#Chomsky|Chomsky]] || apache2 || chomsky.hack.rs || chomsky.hack.rs, chomsky.london.hackspace.org.uk, chomsky.london.hackspace.org.uk || Lets Encrypt || Auto Renew, hopefully ||
|}
|}

Latest revision as of 18:05, 23 November 2018

TLS Certificates

This page lists our certificates, where they are, what they are for, who issued them, and when they expire

Host Service CN SubjectAltnames Issuer Expirey notes
Turing SMTP turing.hackspace.org.uk turing.hackspace.org.uk Lets Encrypt Auto Renew, hopefully turing is the mx for london.hackspace.org.uk, hackspace.org.uk and m0hsl.org
Turing LDAP same cert as above " " " used by the LDAP replica on ldap-secondary on the hackspace local network.
Turing main website london.hackspace.org.uk london.hackspace.org.uk " "
Knuth wiki wiki.london.hackspace.org.uk wiki.london.hackspace.org.uk Lets Encrypt Auto Renew
ldap-secondary ldap ldap.lan.london.hackspace.org.uk ldap.lan.london.hackspace.org.uk Lets Encrypt Auto renew Read only replica of the DB on turing, clients verify the cert.
adminstuff redmine adminstuff.london.hackspace.org.uk adminstuff.london.hackspace.org.uk,bugs.london.hackspace.org.uk Lets Encrypt Auto Renew, hopefully
adminstuff apache2 same cert as above " " "
adminstuff freeradius spacefed.london.hackspace.org.uk spacefed.london.hackspace.org.uk Lets Encrypt Auto Renew, hopefully Used for spacefed, the clients need to be able to verify the cert.
ACserver apache2 acserver.london.hackspace.org.uk acserver.london.hackspace.org.uk " " Used for the acserver website.
Chomsky apache2 chomsky.hack.rs chomsky.hack.rs, chomsky.london.hackspace.org.uk, chomsky.london.hackspace.org.uk Lets Encrypt Auto Renew, hopefully