[Bug 1853021] Re: ssl-cert generate-default-snakeoil provides no way to override default 10 year expiration or reduce to 825 day expiration

** Summary changed: - ssl-cert generate-default-snakeoil provides no way to override default 10 year expiration + ssl-cert generate-default-snakeoil provides no way to override default 10 year expiration or reduce to 825 day expiration -- You received this bug notification because you are a me

[Bug 1853021] [NEW] ssl-cert generate-default-snakeoil provides no way to override default 10 year expiration

Public bug reported: The CA/Browser Forum now has a standard with maximum expiration of 825 days. References: https://cabforum.org/2017/03/17/ballot-193-825-day-certificate-lifetimes/ https://www.sslshopper.com/cab-forum-reduces-max-cert-validity-to-825-days.html https://support.apple.com/en-us/

[Bug 1023389] Re: "service nginx status" is confusing when nginx is not running

Isn't the issue that this upstream issue - http://bugs.debian.org/cgi- bin/bugreport.cgi?bug=541228 was to adhere to LSB ( http://refspecs.freestandards.org/LSB_3.1.0/LSB-Core-generic/LSB-Core- generic/iniscrptact.html )? Is the report here that for "status" it does not? ** Bug watch added: Debia