James Renken
James Renken
This is on our internal radar, too, and we have preliminary plans to rework how we handle these e-mails. The work will be complicated by needing to integrate with our...
This feature sounds like it could be related to, or at least share a lot of code with, CAA `iodef` support.
A `contact-auditor` run: * Confirmed that `Domain name is an ICANN TLD` is the only case where a valid email is being rejected. * Exposed #6231.
Hi, @dkg, Once CAA record extensions (RFC 8657) are available in production, allowing a CAA record to restrict issuance to (a) specific ACME registration(s), will that satisfy your use case?
Ping @Neilpang - We at Let's Encrypt would love to see this PR updated and merged. Thanks! ❤️
> @jprenken: Do you see peaks at the beginning of each minute? I.e., should the `--cron` option include a random delay of [0,60] seconds? Thanks so much for updating this!...
The only cleanups were that I changed a comma to a semicolon on line 14, and lowercased both "agreements" (from "Current Agreements") and "problem reports" (from "Certificate Problem Reports"). Totally...
This remains in our backlog for now. Most stapling implementations out there (very reasonably) won't cache or serve non-valid responses, so we'll need to tweak or re-implement.
I made some further changes and am happy, but I think this needs full testing of Donorbox, and PMA review of the privacy policy update.
It'll be important to check that IANA's list is in an expected state, before acting on it. We sometimes successfully retrieve the file but find it blank or incomplete. One...