Okay, so the AddTrust CA expiry thing is real. It's fucking absurd that nobody is backporting fixes to OpenSSL 1.0.x and is just saying that you need to upgrade to OpenSSL 1.1.1 (and re-link literally your entire system) to fix this. Does anyone know for certain whether removing AddTrust from the CA anchor list fixes?
This Mastodon instance is for people interested in technology. Discussions aren't limited to technology, because tech folks shouldn't be limited to technology either!