Account API is now live! 🥳

Friday, September 13, 2024

We’re thrilled to announce that the SSLreminder account API is now live and available to all paid customers! After an exciting pre-release phase with a select group of testers, we’ve fine-tuned the endpoints to ensure they meet the needs of our users. The API allows you to automate domain management, making it easier to keep track of your SSL/TLS certificates, integrate seamlessly with your existing tools, and streamline domain management operations.…more

Introducing our new account API (pre-release)

Friday, August 9, 2024

We’re excited to announce the launch of a new feature that many of our customers have been asking for—our Account API is here and currently in pre-release testing! We’ve rolled it out to a select group of customers who requested it specifically, and they’re helping us fine-tune its functionality. Once the testing phase is complete, API access will be available to all customers on a paid plan. The new API will offer an easy and secure way to manage domain names under your SSLreminder account, automate management actions, and integrate with your existing tools.…more

Customer Emails feature released

Saturday, September 2, 2023

Following multiple requests, we’re happy to release a new feature called “Customer Emails”. It will be most beneficial to SSLreminder account owners who manage domain names on behalf of their customers. The Customer Emails feature allows you to assign a customer email address to a tracked domain name so that the notification is also delivered to your customer. Let’s see how this works in practice below. Please note there’s a Q&A section at the bottom to ensure we’ll cover everything that changes with this release.…more

The PQC Migration Handbook

Monday, May 15, 2023

The Dutch National Communications Security Agency and several other participants have released the PQC Migration Handbook. This handbook provides actionable steps for organizations to identify and mitigate the risks of quantum computers to their cryptographic landscape. With the increasing development of quantum computers, many cryptographic schemes currently in use will become weakened or completely insecure. The handbook explains the importance of identifying and migrating to post-quantum cryptography (PQC) to ensure the security of sensitive data and prevent unauthorized access.…more

RPKI in Dutch government routing by the end of 2024

Monday, May 8, 2023

By the end of 2024, all Dutch government ICT systems must use the RPKI standard to improve the government’s internet routing security. This also means that RPKI must not only be used for new purchases but should also be implemented in all existing government systems. The Government-wide Policy Consultation on Digital Government (OBDO) established this objective on March 30th as part of a target agreement. Why use RPKI? RPKI is a technique that aims to prevent route leaks and hijacks, which occur when internet traffic is redirected to unauthorized networks.…more

Google to phase out the address bad padlock icon in Chrome

Thursday, May 4, 2023

Google plans to replace the padlock icon indicating website security in Chrome with a “tune” icon in September 2023 as part of a browser redesign. Google’s research found that only 11% of participants understood the intended purpose of the lock icon. The new icon better represents control menus and encourages users to click through to access more information about their security and connection settings. Over 95% of Chrome webpages loaded on Windows now use HTTPS, making it the default connection.…more

Open letter to the British government from online messengers

Sunday, April 30, 2023

The EU’s proposed “chat control” legislation and the UK’s Online Safety Bill are both under the pretext of child protection. Still, they also enable full-scale surveillance of chat communication without probable cause. That is why seven messenger applications (Element, Session, Signal, Threema, Viber, WhatsApp, and Wire) published an open letter in opposition to the UK’s Online Safety Bill currently in the House of Lords. To read the letter, head over to Threema’s website: https://threema.…more

Chrome downgrades long-running requests from HTTPS to HTTP (bug)

Thursday, April 28, 2022

Interesting bug was discovered in Chrome, describing the behaviour of the browser downgrading long-running requests from HTTPS to HTTP after 3 seconds of waiting for a response. Chrome is cancelling the first request after 3s, then requests the same URL again, this time via HTTP, instead of the original HTTPS. Chrome downgrading HTTPS to HTTP Here are the steps to reproduce this issue: Open a new incognito window Create a new throttling profile in the network tab with settings (1.…more

Introducing Digest Email

Tuesday, January 18, 2022

New notification mode In January 2022, we have released a new notification mode. It comes as an addition to our standard daily emails (one email per domain name) and weekly Slack digests. Once enabled, the Digest email mode replaces daily individual emails, compiling together expiration information for all domain names under your account. Here’s how to enable Digest emails: Navigate to the Notification preferences menu in your account In the Digest email section, select “Digest email” and click on “Update notification preferences” Digest email in Notification preferences Give it a try It is possible to receive a Digest email before deciding whether to switch to this notification mode.…more

Let's Encrypt Root Certificate Expiration

Wednesday, May 12, 2021

On September 30, 2021, the older root certificate of Let’s Encrypt will expire (the DST Root CA X3). Here’s what happens after that date: Older devices that do not receive software updates will not trust the certificates from Let’s Encrypt anymore (for example, iPhone 4). This is because such devices will not have the new root certificate installed with software updates (the ISRG Root X1) Modern devices already contain the new certificate, ISRG Root X1, in their list of root certificates.…more