we love the Icinga Community feeling and appreciate you - each and every member - because you have each other’s backs and that’s awesome to see!
Thank you for that – for your questions and your answers. Speaking of which: Feedback Week is happening again!
Mark your calendars, turn your notifications on or do whatever it takes to tune in next week, starting Monday, 2022-02-27T23:00:00Z - here in the Community, on Twitter, LinkedIn or Facebook!
5 Days, 5 Topics, a bunch of questions and new Community Heroes, which we’re going to choose!
We need you and your voice, so get ready to be heard!
Watch the YouTube video below, where Feu and Jessi have more information for you regarding next week: Feedback Week Announcement - YouTube
Biggest painpoints from a security perspective are the very long runtime of certificates and having no certificate revocation.
The runtime does not need to be as short as for a webserver but with such long runtimes it is quite likely an algorithm will become insecure in this timeframe and there should be no need for it as there is a refreshment of the certificates already available.
The missing revocation prevents from disallowing connect at all, communication is quite limited for a system without endpoint or a user being removed, but being able to also revoke the certificate would be a much cleaner state.