Abyss and Let’s Encrypt (a new Certificate Authority)

DavidQ

Hi Aprelium,
I have just heard about Let's Encrypt...
Let’s Encrypt is a new Certificate Authority:
It’s free, automated, and open. Arriving Q4 2015
https://letsencrypt.org/
...(more information below FYI) and wondered if you are aware of it and whether you might consider making Abyss automatically handle the creation, use within Abyss and renewal of their free security certificates?
It seems like it will be a good way of https securing a web site hosted in Abyss without much cost or effort.
I will look forward hearing your thoughts on this.
Thanks,
David
More information...
Let’s Encrypt is a free, automated, and open certificate authority (CA), run for the public’s benefit. Let’s Encrypt is a service provided by the Internet Security Research Group (ISRG). https://letsencrypt.org/isrg/
The key principles behind Let’s Encrypt are:
Free: Anyone who owns a domain name can use Let’s Encrypt to obtain a trusted certificate at zero cost.
Automatic: Software running on a web server can interact with Let’s Encrypt to painlessly obtain a certificate, securely configure it for use, and automatically take care of renewal.
Secure: Let’s Encrypt will serve as a platform for advancing TLS security best practices, both on the CA side and by helping site operators properly secure their servers.
Transparent: All certificates issued or revoked will be publicly recorded and available for anyone to inspect.
Open: The automatic issuance and renewal protocol will be published as an open standard that others can adopt.
Cooperative: Much like the underlying Internet protocols themselves, Let’s Encrypt is a joint effort to benefit the community, beyond the control of any one organization.

DavidQ

I found some more information and it looks like multi-domain certificates will be available...
https://community.letsencrypt.org/t/frequently-asked-questions-faq/26

Can I get a certificate for multiple domain names?
Yes, the same certificate can apply to several different names using the Subject Alternative Name (SAN) mechanism. The Let's Encrypt client automatically requests certificates for multiple names when requested to do so. The resulting certificates will be accepted by browsers for any of the domain names listed in them.

https://community.letsencrypt.org/t/please-support-multi-domain-ssl-certificates-like-the-ones-on-positivessl/867/4

Please support Multi Domain SSL Certificates like...
ilp.moe
stats.ilp.moe
db.ilp.moe
b.ilp.moe
s.ilp.moe
hack.ilp.moe
im.ilp.moe
toaru-anime.tv
stats.toaru-anime.tv
im.toaru-anime.tv
toaru-music.tv
stats.toaru-music.tv
im.toaru-music.tv
toaru-pic.tv
stats.toaru-pic.tv
im.toaru-pic.tv
That list of domains will be fine for Let's Encrypt.

DavidQ

Hi,
It seems that Let's Encrypt entered its public beta phase in December 2015...
https://letsencrypt.org/2015/12/03/entering-public-beta.html
I would really appreciate a reply from Aprelium to my question about the possibility of interfacing with this service from Abyss.
Thanks,
David

twotone

I would VERY MUCH like to use let's encrypt with Abyss. Any thoughts on Abyss support for this service. This is a first of it's kind - automatic request, signing, installation, and renewal of certificates - FOR FREE. No more expired certificates and lengthy trouble tickets to get renewals installed.

twotone

This guy has created a windows client for IIS.
https://community.letsencrypt.org/t/how-letsencrypt-work-for-windows-iis/2106/30
He has developed a plugin architecture for his client so plugins can be written for other servers (Such as Abyss). How about it? Anyone up to the task of coding a plugin for Abyss for this guys Let's Encrypt windows client? It's definitely beyond my abilities.

lazna

+1
Tool for letsencrypt certicate automation for Abyss will be VERY usefull...

DavidQ

It's been five months since I posted this question. I also emailed and sent private messages to Aprelium and received no reply.
This makes me wonder if all is well at Aprelium. I do hope so.

lazna

Have serious doubts, unable to found Aprelium SARL in Tunisian commercional registry..
http://www.registre-commerce.tn

TRUSTAbyss

Have a look at this post by Aprelium
http://aprelium.com/forum/viewtopic.php?t=412403

admin

lazna wrote
Have serious doubts, unable to found Aprelium SARL in Tunisian commercional registry..
http://www.registre-commerce.tn

We doubt you did the search using the right form:
* Browse http://www.registre-commerce.tn
* Select "Personne Morale" under "Recherche" in the left panel
* In the displayed form, type "Aprelium" in "Nom commercial"
* Press the "Lancer la Rechecher" button
* You'll get a table with a single row (ours)
* Press on the "eye" icon at the right of the row
* You'll get a page with more details about the company.

admin

DavidQ wrote
I would really appreciate a reply from Aprelium to my question about the possibility of interfacing with this service from Abyss.

ACME protocol support is planned for version 2.12 (Q4/2016.)
ACME is the protocol used to automatically request certificates from certification authorities such as "Let's Encrypt".

lazna

admin wrote

lazna wrote
Have serious doubts, unable to found Aprelium SARL in Tunisian commercional registry..
http://www.registre-commerce.tn

We doubt you did the search using the right form:
* Browse http://www.registre-commerce.tn
* Select "Personne Morale" under "Recherche" in the left panel
* In the displayed form, type "Aprelium" in "Nom commercial"
* Press the "Lancer la Rechecher" button
* You'll get a table with a single row (ours)
* Press on the "eye" icon at the right of the row
* You'll get a page with more details about the company.

I saw this single row, but not discovered the 'eye' is clickable. Than you for step by step guide.
Glad to see my doubts about Aprelium end days are false...
L.

DavidQ

admin wrote
ACME protocol support is planned for version 2.12 (Q4/2016.)
ACME is the protocol used to automatically request certificates from certification authorities such as "Let's Encrypt".

That is really good news! I will look forward to it.

Lithorien

Hi there. Any word on ACME support for Let's Encrypt?

Lawrence

Yeah I'm pretty keen on this also, I'd very much like to secure a few pages. ^_^

Daevon

Thanks Aprelium, and happy new year!

DavidQ

It seems the planned version 2.12 release did not arrive in Q4/2016. However, I'm still really looking forward to ACME protocol support and would appreciate a progress update from Aprelium if possible.
Thanks,
David

pkSML

DavidQ wrote
It seems the planned version 2.12 release did not arrive in Q4/2016. However, I'm still really looking forward to ACME protocol support and would appreciate a progress update from Aprelium if possible.
Thanks,
David

Ditto that! Hope v. 2.12 can come soon with Let's Encrypt functionality.

Daevon

I too hope for that update, but I also wrote support more than a month ago and got no reply whatsoever...:(

Lithorien

Just bumping this up, wondering if there's any response from the support team about ACME support?