[CentOS] Certificates

Sat Sep 1 18:27:12 UTC 2018
Valeri Galtsev <galtsev at kicp.uchicago.edu>

On 9/1/18 1:12 PM, Rainer Duffner wrote:
>> Am 01.09.2018 um 18:00 schrieb Leon Fauster via CentOS <centos at centos.org>:
>> Out of curiosity - do you change also the private key every time?
> I’m pretty sure LE creates a new private key, too.

I just checked on my box and confirm that yes, with every renewal of 
certificate new key is created. I should realize that fact even before 
looking, as it is asymmetric encryption pair, thus the new pair cert+key 
is generated (and the cert [request] gets signed).


>  From a cursory glance at lego’s certificate directory on a server with a couple of dozens of LE certificates at least.
> After all, changing the private key is what this is all about (showing that you’re still in charge).
> _______________________________________________
> CentOS mailing list
> CentOS at centos.org
> https://lists.centos.org/mailman/listinfo/centos

Valeri Galtsev
Sr System Administrator
Department of Astronomy and Astrophysics
Kavli Institute for Cosmological Physics
University of Chicago
Phone: 773-702-4247