WelcomeUser Guide
ToSPrivacyCanary
DonateBugsLicense

©2026 Poal.co

674

Yeah, that's going to be so fucking "fun". So much shit is going to be breaking ALL THE FUCKING TIME.

Archive: (brkoen)

From the post:

>TLS certificate lifetimes are dropping from 398 days to 47 over the next three years. Here's what changes, why it's happening, and the eight things every platform team should fix before the first cliff in 2027. For the first ten years of the modern web's encrypted era, the median platform engineer thought about TLS certificates roughly twice a year. Renew. Click. Forget. By the late 2010s automation crept in. ACME took the click out, and most teams stopped thinking about certificates at all.

Yeah, that's going to be so fucking "fun". So much shit is going to be breaking ALL THE FUCKING TIME. Archive: (brkoen) From the post: >>TLS certificate lifetimes are dropping from 398 days to 47 over the next three years. Here's what changes, why it's happening, and the eight things every platform team should fix before the first cliff in 2027. For the first ten years of the modern web's encrypted era, the median platform engineer thought about TLS certificates roughly twice a year. Renew. Click. Forget. By the late 2010s automation crept in. ACME took the click out, and most teams stopped thinking about certificates at all.
You are currently inside a comment thread.
Click here to see all the comments (14).
[–] 2 pts

The current theory is because of post-quantum. The idea being if you rotate keys/certs often enough it won't matter if it gets cracked (not true if you have the ability to just store all of that data and crack it offline later).

It sounds retarded to me.

[–] 1 pt

Yeah, gotta suspect it’s the amount of time most likely to catch people and systems out, optimal for chaos.