this post was submitted on 13 Sep 2024
420 points (99.1% liked)

Programmer Humor

19623 readers
1 users here now

Welcome to Programmer Humor!

This is a place where you can post jokes, memes, humor, etc. related to programming!

For sharing awful code theres also Programming Horror.

Rules

founded 1 year ago
MODERATORS
 

Oh no, not just my build server, Microsofts build server... Everyones' Azure build server - (if you're building on windows)

you are viewing a single comment's thread
view the rest of the comments
[–] AreaKode@lemmy.world 51 points 2 months ago (3 children)

As a sysadmin, fuck certificates. They are the bane of my existence. I vote we abolish certs and go Irish honor system!

[–] jaybone@lemmy.world 19 points 2 months ago (2 children)

How is the Irish honor system different than a regular honor system?

[–] bappity@lemmy.world 15 points 2 months ago* (last edited 2 months ago) (2 children)

certificates fucking destroy everything in my work for an hour once every year because of expiry

[–] lud@lemm.ee 22 points 2 months ago (1 children)

You are supposed to be tracking when they expire and then renew/replace them before they expire.

[–] MajorHavoc@programming.dev 9 points 2 months ago* (last edited 2 months ago)

You are supposed to be tracking when they expire and then renew/replace them before they expire.

I've been told that, as well, but I'm not sure I see it... Seems like a lot of effort... (This is sarcasm. Or is it just too much honesty?)

[–] skuzz@discuss.tchncs.de 12 points 2 months ago

Certs have existed a long time, are never implemented correctly, and the expiration cycle that is supposed to bolster security just causes pain as a result.

Certs should just be redesigned to have a kill switch. CRLs were supposed to handle that, but are rarely implemented or implemented correctly.

Certs are also used in so many places where they may not be suited to the task, but because they exist, they've become the de-facto standard.

A temporal expiration system seems flawed from the beginning anyway. What, you don't trust your system anymore just because time has passed? Time is always passing. Are we all secretly racist against clocks now?

[–] PlexSheep@infosec.pub 4 points 2 months ago

Are you talking licenses or certificates? Because if certificates are not automated that's not a problem with certificates but with administration.