balloon
June 4, 2021, 10:10am
10
ZeroSSL had a problem for a few days, but the cause and details have been clarified.
If you are using ZeroSSL with Caddy and are having trouble issuing or renewing your certificate, check your ZeroSSL Status.
https://status.zerossl.com/
You can get the official announcement of ZeroSSL:
https://help.zerossl.com/hc/en-us/categories/360004896194-Announcements
Caddy uses Let’s Encrypt by default, so you usually don’t need to worry about this unless you explicitly state the use of ZeroSSL in the Caddyfile.
I’ve made this a Wiki so you can edit this post if you want. Please updat…
opened 09:28AM - 04 Jun 21 UTC
closed 04:27PM - 04 Jun 21 UTC
bug
https://help.zerossl.com/hc/en-us/articles/900006733066
ZeroSSL has announced… that certificates issued by ACME may be revoked by Sectigo.
Caddy-issued certificates clearly fall into this category.
Certificates prior to May 21, 2021 must be prompted to reship the certificate. Can this be handled at the Caddy level?
If necessary, we also need to provide a means for the user to handle it manually.