No it is not you. F-Droid has managed to let their TLS certificate expire today. Especially given they do actually have HSTS enabled this will lead many people unable to go to their website.
4 Likes
Hashtag embarrassing.
5 Likes
That’s odd. When I go to the website, I see the certificate was issued August 1 and expires October 30.
2 Likes
this is likely different from the website but otherwise this is odd, can confirm the same.
could you clarify if it’s for the f-droid.org website or not? @ph00lt0
Nothing odd. They resolved the issue.
1 Like
Their website is hosted by Greenhost and Hetzner. Probably just didn’t renew correctly on one of them, so 50/50 chance you’d be affected.
I work in government IT and it is pretty shocking how common this is.
The amount of times I’ve had to chase vendors, or reps to update their site certificates is maddening.
So I can only exhale through my nose in laughter as even giant corporations let these lapse (or leave until minutes prior) and render their sites unreachable. Good times.
2 Likes
If they host the site on a full root access vps then auto certificate issuance shouldn’t be a problem with certbot and letsencrypt or zerossl, it’ll basically autorenew forever. It is harder for shared hosting though to not accidentally let the cert lapse when the shared hosting autorenew script shits the bed which is so common.
Letsencrypt even send mail reminder before the cert would expire but if i remember correctly they’re going to deprecate the mail reminder soon.
F-Droid does not use shared hosting.
They stopped this.
F-Droid did have the cert renewed, it just wasn’t deployed for some reason.
2 Likes