Difference between revisions of "Networking/TLSCerts"

From London Hackspace Wiki
Jump to: navigation, search
m (updated links from lamarr to landin.)
m (no more denning participating in TLScerts.)
 
Line 9: Line 9:
 
| [[Turing]] || SMTP || turing.hackspace.org.uk || turing.hackspace.org.uk || Lets Encrypt || Auto Renew, hopefully || turing is the mx for london.hackspace.org.uk, hackspace.org.uk and m0hsl.org
 
| [[Turing]] || SMTP || turing.hackspace.org.uk || turing.hackspace.org.uk || Lets Encrypt || Auto Renew, hopefully || turing is the mx for london.hackspace.org.uk, hackspace.org.uk and m0hsl.org
 
|-
 
|-
| [[Turing]] || LDAP || same cert as above || " || " || " || used by the LDAP replica on [[denning]]
+
| [[Turing]] || LDAP || same cert as above || " || " || " || used by the LDAP replica on ldap-secondary on the hackspace local network.
 
|-
 
|-
 
| [[Turing]] || main website || london.hackspace.org.uk ||london.hackspace.org.uk  || "  || "  ||
 
| [[Turing]] || main website || london.hackspace.org.uk ||london.hackspace.org.uk  || "  || "  ||
Line 15: Line 15:
 
| [[Knuth]] || wiki || wiki.london.hackspace.org.uk || wiki.london.hackspace.org.uk || Lets Encrypt || Auto Renew ||  
 
| [[Knuth]] || wiki || wiki.london.hackspace.org.uk || wiki.london.hackspace.org.uk || Lets Encrypt || Auto Renew ||  
 
|-
 
|-
| [[Denning]] || ldap || ldap.lan.london.hackspace.org.uk || ldap.lan.london.hackspace.org.uk || Lets Encrypt || Auto renew?!?! || Read only replica of the DB on turing, clients verify the cert. ansible-simp_le dosen't work on wheezy.
+
| ldap-secondary || ldap || ldap.lan.london.hackspace.org.uk || ldap.lan.london.hackspace.org.uk || Lets Encrypt || Auto renew || Read only replica of the DB on turing, clients verify the cert.
 
|-
 
|-
 
| [[adminstuff]] || redmine || adminstuff.london.hackspace.org.uk || adminstuff.london.hackspace.org.uk,bugs.london.hackspace.org.uk || Lets Encrypt || Auto Renew, hopefully ||  
 
| [[adminstuff]] || redmine || adminstuff.london.hackspace.org.uk || adminstuff.london.hackspace.org.uk,bugs.london.hackspace.org.uk || Lets Encrypt || Auto Renew, hopefully ||  

Latest revision as of 18:05, 23 November 2018

TLS Certificates

This page lists our certificates, where they are, what they are for, who issued them, and when they expire

Host Service CN SubjectAltnames Issuer Expirey notes
Turing SMTP turing.hackspace.org.uk turing.hackspace.org.uk Lets Encrypt Auto Renew, hopefully turing is the mx for london.hackspace.org.uk, hackspace.org.uk and m0hsl.org
Turing LDAP same cert as above " " " used by the LDAP replica on ldap-secondary on the hackspace local network.
Turing main website london.hackspace.org.uk london.hackspace.org.uk " "
Knuth wiki wiki.london.hackspace.org.uk wiki.london.hackspace.org.uk Lets Encrypt Auto Renew
ldap-secondary ldap ldap.lan.london.hackspace.org.uk ldap.lan.london.hackspace.org.uk Lets Encrypt Auto renew Read only replica of the DB on turing, clients verify the cert.
adminstuff redmine adminstuff.london.hackspace.org.uk adminstuff.london.hackspace.org.uk,bugs.london.hackspace.org.uk Lets Encrypt Auto Renew, hopefully
adminstuff apache2 same cert as above " " "
adminstuff freeradius spacefed.london.hackspace.org.uk spacefed.london.hackspace.org.uk Lets Encrypt Auto Renew, hopefully Used for spacefed, the clients need to be able to verify the cert.
ACserver apache2 acserver.london.hackspace.org.uk acserver.london.hackspace.org.uk " " Used for the acserver website.
Chomsky apache2 chomsky.hack.rs chomsky.hack.rs, chomsky.london.hackspace.org.uk, chomsky.london.hackspace.org.uk Lets Encrypt Auto Renew, hopefully