Networking/TLSCerts: Difference between revisions

From London Hackspace Wiki
(Chomsky has a cert now.)
Line 15: Line 15:
| [[Knuth]] || wiki || wiki.london.hackspace.org.uk || wiki.london.hackspace.org.uk || Lets Encrypt || Auto Renew ||  
| [[Knuth]] || wiki || wiki.london.hackspace.org.uk || wiki.london.hackspace.org.uk || Lets Encrypt || Auto Renew ||  
|-
|-
| [[Denning]] || ldap || ldap.lan.london.hackspace.org.uk || ldap.lan.london.hackspace.org.uk, hackspace.org.uk || Startcom || Sep 20 23:31:11 2016 GMT || Read only replica of the DB on turing, clients verify the cert. The hackspace.org.uk altname is an artefact of the way StartCom works and is not wanted.
| [[Denning]] || ldap || ldap.lan.london.hackspace.org.uk || ldap.lan.london.hackspace.org.uk || Lets Encrypt || Auto renew?!?! || Read only replica of the DB on turing, clients verify the cert. ansible-simp_le dosen't work on wheezy.
|-
|-
| [[adminstuff]] || redmine || adminstuff.london.hackspace.org.uk || adminstuff.london.hackspace.org.uk,bugs.london.hackspace.org.uk || Lets Encrypt || Auto Renew, hopefully ||  
| [[adminstuff]] || redmine || adminstuff.london.hackspace.org.uk || adminstuff.london.hackspace.org.uk,bugs.london.hackspace.org.uk || Lets Encrypt || Auto Renew, hopefully ||  

Revision as of 00:19, 22 September 2016

TLS Certificates

This page lists our certificates, where they are, what they are for, who issued them, and when they expire

Host Service CN SubjectAltnames Issuer Expirey notes
Turing SMTP turing.hackspace.org.uk turing.hackspace.org.uk Lets Encrypt Auto Renew, hopefully turing is the mx for london.hackspace.org.uk, hackspace.org.uk and m0hsl.org
Turing LDAP same cert as above " " " used by the LDAP replica on denning
Turing main website london.hackspace.org.uk london.hackspace.org.uk Geotrust 17/11/17
Knuth wiki wiki.london.hackspace.org.uk wiki.london.hackspace.org.uk Lets Encrypt Auto Renew
Denning ldap ldap.lan.london.hackspace.org.uk ldap.lan.london.hackspace.org.uk Lets Encrypt Auto renew?!?! Read only replica of the DB on turing, clients verify the cert. ansible-simp_le dosen't work on wheezy.
adminstuff redmine adminstuff.london.hackspace.org.uk adminstuff.london.hackspace.org.uk,bugs.london.hackspace.org.uk Lets Encrypt Auto Renew, hopefully
adminstuff apache2 same cert as above " " "
adminstuff freeradius spacefed.london.hackspace.org.uk spacefed.london.hackspace.org.uk Lets Encrypt Auto Renew, hopefully Used for spacefed, the clients need to be able to verify the cert.
ACServer apache2 acserver.london.hackspace.org.uk acserver.london.hackspace.org.uk, hackspace.org.uk StartCom 30/10/16 Used for the acserver website. The hackspace.org.uk altname is an artefact of the way StartCom works and is not wanted.
Chomsky apache2 chomsky.hack.rs chomsky.hack.rs, chomsky.london.hackspace.org.uk, chomsky.london.hackspace.org.uk Lets Encrypt Auto Renew, hopefully