Loading howto/tls.md +10 −0 Original line number Diff line number Diff line Loading @@ -101,6 +101,8 @@ copied from the previous certificate bundle. ## Retiring a certificate ### Let's Encrypt If a certificate is not in use, it needs to be destroyed. Nagios will warn about the certificate expiring if it's not in use. For example: Loading @@ -122,6 +124,14 @@ repositories: When you push the `letsencrypt-domains.git` repository, this will sync over to the `pauli` server and silence the warning. ### Harica To remove a no-longer needed Harica certificate, eg. for an onion service: * On the Puppet server, locate the certificate at `/srv/puppet.torproject.org/from-harica` * Delete the `<onion>.*` files # How-to ## Pager playbook Loading Loading
howto/tls.md +10 −0 Original line number Diff line number Diff line Loading @@ -101,6 +101,8 @@ copied from the previous certificate bundle. ## Retiring a certificate ### Let's Encrypt If a certificate is not in use, it needs to be destroyed. Nagios will warn about the certificate expiring if it's not in use. For example: Loading @@ -122,6 +124,14 @@ repositories: When you push the `letsencrypt-domains.git` repository, this will sync over to the `pauli` server and silence the warning. ### Harica To remove a no-longer needed Harica certificate, eg. for an onion service: * On the Puppet server, locate the certificate at `/srv/puppet.torproject.org/from-harica` * Delete the `<onion>.*` files # How-to ## Pager playbook Loading
