subject:"\[CODE4LIB\] VIAF https certs"

Re: [CODE4LIB] VIAF https certs

2016-02-03 Thread Stuart A. Yeates

doi.org has a complex DNS, I'm not sure I'd accept the ssllabs result
without double checking it with someone who deeply understands both DNS and
HTTPS.

cheers
stuart

--
...let us be heard from red core to black sky

On Thu, Feb 4, 2016 at 5:21 AM, Eric Hellman  wrote:

> https://www.ssllabs.com/ssltest/analyze.html?d=dx.doi.org <
> https://www.ssllabs.com/ssltest/analyze.html?d=dx.doi.org>
>
> Someone seem to be on the job there.
>
> > On Feb 2, 2016, at 2:32 PM, Stuart A. Yeates  wrote:
> >
> > There are a relatively small number of infrastructure domains to which a
> > huge number of our users are exposed:
> >
> > doi.org
> > handle.net
> > ...
> >
> > In my view pretty much anything which can be used as a lever to get them
> to
> > become more secure has to be a good idea, since these are websites which
> we
> > have basically no choice about exposing our users to.
> >
> > cheers
> > stuart
> >
>
>

Re: [CODE4LIB] VIAF https certs

2016-02-03 Thread Eric Hellman

https://www.ssllabs.com/ssltest/analyze.html?d=dx.doi.org 


Someone seem to be on the job there.

> On Feb 2, 2016, at 2:32 PM, Stuart A. Yeates  wrote:
> 
> There are a relatively small number of infrastructure domains to which a
> huge number of our users are exposed:
> 
> doi.org
> handle.net
> ...
> 
> In my view pretty much anything which can be used as a lever to get them to
> become more secure has to be a good idea, since these are websites which we
> have basically no choice about exposing our users to.
> 
> cheers
> stuart
> 



signature.asc
Description: Message signed with OpenPGP using GPGMail

Re: [CODE4LIB] VIAF https certs

2016-02-02 Thread Stuart A. Yeates

There are a relatively small number of infrastructure domains to which a
huge number of our users are exposed:

doi.org
handle.net
...

In my view pretty much anything which can be used as a lever to get them to
become more secure has to be a good idea, since these are websites which we
have basically no choice about exposing our users to.

cheers
stuart

--
...let us be heard from red core to black sky

On Wed, Feb 3, 2016 at 6:08 AM, Eric Hellman  wrote:

> The folks at 18F offered to set up a dashboard for the library world like
> https://pulse.cio.gov/https/domains/
>  
>
>  
> b ut we thought it might be too
> depressing just now.
>
>  
>
>  
> > On Feb 1, 2016, at 2:21 PM, Stuart A. Yeates  wrote:
> >
> > Does anyone know of an alerting service for HTTPS certs? Ideally one that
> > covers both soon-to-expire certs and
> > now-below-recommended-security-settings certs?
> >
> > cheers
> > stuart
> >
> > --
> > ...let us be heard from red core to black sky
> >
>
>

Re: [CODE4LIB] VIAF https certs

2016-02-02 Thread Eric Hellman

The folks at 18F offered to set up a dashboard for the library world like 
https://pulse.cio.gov/https/domains/
 

 
b ut we thought it might be too 
depressing just now.

 

 
> On Feb 1, 2016, at 2:21 PM, Stuart A. Yeates  wrote:
> 
> Does anyone know of an alerting service for HTTPS certs? Ideally one that
> covers both soon-to-expire certs and
> now-below-recommended-security-settings certs?
> 
> cheers
> stuart
> 
> --
> ...let us be heard from red core to black sky
> 



signature.asc
Description: Message signed with OpenPGP using GPGMail

Re: [CODE4LIB] VIAF https certs

2016-02-01 Thread Francis Kayiwa


On 2/1/16 2:21 PM, Stuart A. Yeates wrote:

Does anyone know of an alerting service for HTTPS certs? Ideally one that
covers both soon-to-expire certs and
now-below-recommended-security-settings certs?


Some assembly required. We use nagi... *ahem* icinga check_http to do 
this. The man pages or this should set you on your way.


http://www.barryodonovan.com/2012/10/10/monitoring-ssl-certificate-expiry-dates-with-nagios

Cheers,
./fxk

--
"Anyone attempting to generate random numbers by deterministic means is, 
of course, living in a state of sin."

-- John Von Neumann

Re: [CODE4LIB] VIAF https certs

2016-02-01 Thread Peter Murray

For what it's worth, there is another site out there that looks at HTTP headers 
with a security bent:

  https://securityheaders.io/?q=http%3A%2F%2Fdltj.org

I found I have some more work to do myself...


Peter

> On Feb 1, 2016, at 2:06 PM, LeVan,Ralph  wrote:
> 
> Hmm.  Our network folks had gotten that up to a C back in September and 
> promised an OS upgrade to our load balancers to fix the remaining problems.
> 
> I'll rattle their cages again.
> 
> Thanks for checking!
> 
> Ralph


-- 
Peter Murray
Dev/Ops Lead and Project Manager, Cherry Hill Company
Blogger, Disruptive Library Technology Jester - http://dltj.org/

Re: [CODE4LIB] VIAF https certs

2016-02-01 Thread Stuart A. Yeates

Does anyone know of an alerting service for HTTPS certs? Ideally one that
covers both soon-to-expire certs and
now-below-recommended-security-settings certs?

cheers
stuart

--
...let us be heard from red core to black sky

On Tue, Feb 2, 2016 at 8:06 AM, LeVan,Ralph  wrote:

> Hmm.  Our network folks had gotten that up to a C back in September and
> promised an OS upgrade to our load balancers to fix the remaining problems.
>
> I'll rattle their cages again.
>
> Thanks for checking!
>
> Ralph
>
> -Original Message-
> From: Code for Libraries [mailto:CODE4LIB@LISTSERV.ND.EDU] On Behalf Of
> Stuart A. Yeates
> Sent: Monday, February 01, 2016 1:53 PM
> To: CODE4LIB@LISTSERV.ND.EDU
> Subject: VIAF https certs
>
> I'm seeing people report issues with the VIAF HTTPS certs, see
> https://en.wikipedia.org/wiki/Template_talk:Authority_control
>
> https://www.ssllabs.com/ssltest/analyze.html?d=viaf.org&latest gives the
> site a fail.
>
> cheers
> stuart
>
>
>
> --
> ...let us be heard from red core to black sky
>

Re: [CODE4LIB] VIAF https certs

2016-02-01 Thread LeVan,Ralph

Hmm.  Our network folks had gotten that up to a C back in September and 
promised an OS upgrade to our load balancers to fix the remaining problems.

I'll rattle their cages again.

Thanks for checking!

Ralph

-Original Message-
From: Code for Libraries [mailto:CODE4LIB@LISTSERV.ND.EDU] On Behalf Of Stuart 
A. Yeates
Sent: Monday, February 01, 2016 1:53 PM
To: CODE4LIB@LISTSERV.ND.EDU
Subject: VIAF https certs

I'm seeing people report issues with the VIAF HTTPS certs, see 
https://en.wikipedia.org/wiki/Template_talk:Authority_control

https://www.ssllabs.com/ssltest/analyze.html?d=viaf.org&latest gives the site a 
fail.

cheers
stuart



--
...let us be heard from red core to black sky

[CODE4LIB] VIAF https certs

2016-02-01 Thread Stuart A. Yeates

I'm seeing people report issues with the VIAF HTTPS certs, see
https://en.wikipedia.org/wiki/Template_talk:Authority_control

https://www.ssllabs.com/ssltest/analyze.html?d=viaf.org&latest gives the
site a fail.

cheers
stuart



--
...let us be heard from red core to black sky

Re: [CODE4LIB] VIAF https certs

Re: [CODE4LIB] VIAF https certs

Re: [CODE4LIB] VIAF https certs

Re: [CODE4LIB] VIAF https certs

Re: [CODE4LIB] VIAF https certs

Re: [CODE4LIB] VIAF https certs

Re: [CODE4LIB] VIAF https certs

Re: [CODE4LIB] VIAF https certs

[CODE4LIB] VIAF https certs

9 matches

Site Navigation

Mail list logo

Footer information