30 Oct
2017
30 Oct
'17
5:38 p.m.
On Mon, 2017-10-30 at 17:25 +0000, Peter Collins wrote:
On 30/10/17 17:06, Conrad Wood wrote:
Thanks Peter,
that is very useful - It kind of verifies my initial assumption that it
is possible but requires more time I have/had available yet, which is
kind of the point of why I'd prefer a "managed" service for this :-))
<somewhat shameless plug>
I am trying to hire a skilled linux dev-op in London, since I simply
haven't got the time, but I just haven't found someone yet.
</somewhat shameless plug>
I'm somewhat surprised about your message re
iPhone phones. Didn't
it
pop up on your users' phones and ask them irritating messages?
Especially, my users are concerned because it popped up a rather
prominent message that it's insecure because the issuer is not
trusted.
I assumed - perhaps incorrectly - that LetsEncrypt isn't trusted by
iPhones.
I've had no problems reported so far and it has been in place a good
while. My first guess would be problems with your certificate chain.
Certainly with the ZNC bouncer I have to use post renewal hooks to
jig
things about into a single file.
Here is a community edited list of supported clients:
https://community.letsencrypt.org/t/which-browsers-and-operating-syst
ems-support-lets-encrypt/4394