2.5 Admins

2.5 Admins 218: TLS TTL

Oct 24, 2024

SSL and TLS certificates are getting shorter lifespans, sparking debate among sysadmins. The latest Windows 11 update is causing massive data retention issues and compatibility problems with certain SSDs. There’s a dive into modern DHCP server options for home routers and tips for using ZFS to securely backup data on a friend's NAS. Exploring the intricacies of encrypted snapshots, replication processes, and VPN enhancements adds a layer of tech-savvy excitement.

31:20

Creator website

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

Apple's proposal to limit SSL certificate lifespans to 45 days could complicate workflows for system administrators reliant on manual renewals.

The latest Windows 11 update is causing significant storage issues and blue screen errors on certain SSDs, highlighting hardware-software coordination challenges.

Deep dives

Impacts of Shortened Certificate Lifespans

Apple's proposal to reduce the maximum certificate lifespan to 45 days has raised concerns among system administrators. This change could significantly alter traditional workflows, particularly for those accustomed to manually managing SSL certificates from vendors. For instance, with automation tools like Let's Encrypt already renewing certificates monthly, the proposed standard may only require adjustments for those not yet automated, thereby eliminating inefficient practices. While some argue that transitioning to shorter lifetimes will improve security, others worry about the potential complications for applications that struggle with frequent certificate updates.

Intro

2min

Navigating SSL Cert Management & Windows 11 Challenges

12min

Challenges with NVMe Storage and DHCP Server Deprecation

6min

Exploring DHCP Tools and Homebrew Router Updates

4min

Secure Data Replication with ZFS

9min

SSL certificates are likely going to last less time, the latest Windows 11 update leaves a huge chunk of data behind and doesn’t play nicely with some SSDs, picking a modern dhcp server on a homebrew router, and storing encrypted backups on a friend’s NAS with ZFS.

Plugs

Support us on patreon and get an ad-free RSS feed with early episodes sometimes

Klara Halloween Webinar: ZFS Horror Stories. Oct 31st 13:00 EDT, 17:00 UTC

News

Sysadmins slam Apple’s SSL/TLS cert lifespan cuts

Windows 11 24H2 hoards 8.63 GB of junk you can’t delete

As Microsoft rolls out its Windows 11 24H2 update, owners of certain Western Digital SSDs have been greeted with constant Blue Screens of Death

WD releases new firmware to fix Windows 11 24H2 blue screens of death on some SSD

Not just Western Digital – Windows 24H2 BSODs Asus kit

Free consulting

We were asked about picking a modern dhcp server on a homebrew router, and storing encrypted backups on a friend’s NAS with ZFS.

The Ars guide to building a Linux router from scratch