Networking/TLSCerts: Difference between revisions

From London Hackspace Wiki
m (no more denning participating in TLScerts.)
 
(3 intermediate revisions by 2 users not shown)
Line 9: Line 9:
| [[Turing]] || SMTP || turing.hackspace.org.uk || turing.hackspace.org.uk || Lets Encrypt || Auto Renew, hopefully || turing is the mx for london.hackspace.org.uk, hackspace.org.uk and m0hsl.org
| [[Turing]] || SMTP || turing.hackspace.org.uk || turing.hackspace.org.uk || Lets Encrypt || Auto Renew, hopefully || turing is the mx for london.hackspace.org.uk, hackspace.org.uk and m0hsl.org
|-
|-
| [[Turing]] || LDAP || same cert as above || " || " || " || used by the LDAP replica on [[denning]]
| [[Turing]] || LDAP || same cert as above || " || " || " || used by the LDAP replica on ldap-secondary on the hackspace local network.
|-
|-
| [[Turing]] || main website || london.hackspace.org.uk ||london.hackspace.org.uk  || Geotrust || 17/11/17 ||
| [[Turing]] || main website || london.hackspace.org.uk ||london.hackspace.org.uk  || || ||
|-
|-
| [[Knuth]] || wiki || wiki.london.hackspace.org.uk || wiki.london.hackspace.org.uk || Lets Encrypt || Auto Renew ||  
| [[Knuth]] || wiki || wiki.london.hackspace.org.uk || wiki.london.hackspace.org.uk || Lets Encrypt || Auto Renew ||  
|-
|-
| [[Denning]] || ldap || ldap.lan.london.hackspace.org.uk || ldap.lan.london.hackspace.org.uk || Lets Encrypt || Auto renew?!?! || Read only replica of the DB on turing, clients verify the cert. ansible-simp_le dosen't work on wheezy.
| ldap-secondary || ldap || ldap.lan.london.hackspace.org.uk || ldap.lan.london.hackspace.org.uk || Lets Encrypt || Auto renew || Read only replica of the DB on turing, clients verify the cert.
|-
|-
| [[adminstuff]] || redmine || adminstuff.london.hackspace.org.uk || adminstuff.london.hackspace.org.uk,bugs.london.hackspace.org.uk || Lets Encrypt || Auto Renew, hopefully ||  
| [[adminstuff]] || redmine || adminstuff.london.hackspace.org.uk || adminstuff.london.hackspace.org.uk,bugs.london.hackspace.org.uk || Lets Encrypt || Auto Renew, hopefully ||  
Line 23: Line 23:
| [[adminstuff]] || freeradius || spacefed.london.hackspace.org.uk || spacefed.london.hackspace.org.uk || Lets Encrypt || Auto Renew, hopefully || Used for spacefed, the clients need to be able to verify the cert.
| [[adminstuff]] || freeradius || spacefed.london.hackspace.org.uk || spacefed.london.hackspace.org.uk || Lets Encrypt || Auto Renew, hopefully || Used for spacefed, the clients need to be able to verify the cert.
|-
|-
| [[Lamarr#ACServer|ACServer]]  || apache2 || acserver.london.hackspace.org.uk || acserver.london.hackspace.org.uk, hackspace.org.uk || StartCom || 30/10/16 || Used for the acserver website. The hackspace.org.uk altname is an artefact of the way StartCom works and is not wanted.
| [[Equipment/Landin#ACserver|ACserver]]  || apache2 || acserver.london.hackspace.org.uk || acserver.london.hackspace.org.uk || " || " || Used for the acserver website.
|-
|-
| [[Equipment/Lamarr#Chomsky|Chomsky]] || apache2 || chomsky.hack.rs || chomsky.hack.rs, chomsky.london.hackspace.org.uk, chomsky.london.hackspace.org.uk || Lets Encrypt || Auto Renew, hopefully ||
| [[Equipment/Landin#Chomsky|Chomsky]] || apache2 || chomsky.hack.rs || chomsky.hack.rs, chomsky.london.hackspace.org.uk, chomsky.london.hackspace.org.uk || Lets Encrypt || Auto Renew, hopefully ||
|}
|}

Latest revision as of 18:05, 23 November 2018

TLS Certificates

This page lists our certificates, where they are, what they are for, who issued them, and when they expire

Host Service CN SubjectAltnames Issuer Expirey notes
Turing SMTP turing.hackspace.org.uk turing.hackspace.org.uk Lets Encrypt Auto Renew, hopefully turing is the mx for london.hackspace.org.uk, hackspace.org.uk and m0hsl.org
Turing LDAP same cert as above " " " used by the LDAP replica on ldap-secondary on the hackspace local network.
Turing main website london.hackspace.org.uk london.hackspace.org.uk " "
Knuth wiki wiki.london.hackspace.org.uk wiki.london.hackspace.org.uk Lets Encrypt Auto Renew
ldap-secondary ldap ldap.lan.london.hackspace.org.uk ldap.lan.london.hackspace.org.uk Lets Encrypt Auto renew Read only replica of the DB on turing, clients verify the cert.
adminstuff redmine adminstuff.london.hackspace.org.uk adminstuff.london.hackspace.org.uk,bugs.london.hackspace.org.uk Lets Encrypt Auto Renew, hopefully
adminstuff apache2 same cert as above " " "
adminstuff freeradius spacefed.london.hackspace.org.uk spacefed.london.hackspace.org.uk Lets Encrypt Auto Renew, hopefully Used for spacefed, the clients need to be able to verify the cert.
ACserver apache2 acserver.london.hackspace.org.uk acserver.london.hackspace.org.uk " " Used for the acserver website.
Chomsky apache2 chomsky.hack.rs chomsky.hack.rs, chomsky.london.hackspace.org.uk, chomsky.london.hackspace.org.uk Lets Encrypt Auto Renew, hopefully