Bonum Certa Men Certa

In Gemini, Over 90% of Capsules Self-Sign Their Certificates and Let's Encrypt Usage Falls to Just 7.5%

posted by Roy Schestowitz on Feb 05, 2024

Security hand

THIS past weekend Soylent News failed to renew its expired certificate (it took a long time to correct this), so people were unable to access the site. Quoting janrinok: "Many of you will have experienced the problems with the expired certificates. Unfortunately, our one remaining sysadmin is away from home until 1400 Monday (US time - tz unknown) and he has been away for a while. We have requested NCommander and k0lie to assist. They have declined. We all have real jobs and lives to live too and this is just one of those things. Unfortunately it seems that the problem will continue for another 36 hours."

As the top comment correctly notes: "Why are we advertising HSTS anyway? If I want to connect insecurely, isn't that my business? Shouldn't I be able to pull a 286 out of mothballs and connect with NCSA Mosaic if I wish to?"

Gemini Protocol is a lot more robust than this. There's no need for 24/7 "on-tap" sysadmin skills.

In Gemini one can set up a certificate for a decade to come and then "forget about it". We had lengthy discussions about it in recent days because of what had happened to Soylent News (internal social problems, exacerbated by aggravations [1, 2]). A few days ago someone in IRC (#governance at their own network) "attacked" janrinok by saying: "Can a community member call for a general vote on the proceedings? Can we veto the janrinok coup d'etat?"

At least janrinok is one of the few people who work hard to keep the site going. All the recent editorial work (latest 13 articles) was his.

Contrariwise, Gemini has a lot less drama and no certificate panic.

According to Lupa's latest survey output: "2399 (90.4 %) capsules are self-signed, 200 (7.5 %) use the Certificate Authority Let's Encrypt, 54 (2.0 %) are signed by another CA (may be not a trusted one)."

We've been in Gemini for 3 years; both this site and its sister site are at the top of Lupa's list (for scale).

So the Linux Foundation's Let's Encrypt is down and self-signing is up. The latter is more secure as it is robust to arbitrary moods of a corporate entity that arbitrarily revokes millions of certificates without bothering to explain what exactly happened. In practice, Certificate Authorities do not tackle the main risks to sites; they act as site assassination and centralised censorship authorities.

Agent

Other Recent Techrights' Posts

What LibreOffice and TDF Get Right About Document Formats (and What They Get Wrong)
OOXML is a phantom - it is something nobody implements, not even Microsoft!
Cannot Speak About IBM Wrongdoing or Jobs Being Sent Overseas (Lower Salaries)
IBM has long attacked the media, the whistleblowers, and even online forums
European Patent Office (EPO) Series: The CIA-Funded Centre-Left in Portugal
In the political turmoil which followed the fall of the old regime, the communists seemed to be acquiring a dominant position and there was a very real risk that Portugal could end up aligned with the Eastern Bloc if they were not stopped
Yesterday Afternoon The Register MS Published a Fake Article That Says "AI" 31 Times Because It Got Paid to Do This
What will happen when all those loans for slop (Ponzi scheme) stop and companies' marketing budgets - which include media bribes for hype campaigns - are no more?
Extraordinary General Meeting of Staff Union of the European Patent Office Ahead of Intensifying Strikes
We will, in the meantime, run a series about EPO corruption, which is now connected to corruption in Portugal and to corruption inside the EU
 
Communities and "Prosumers."
today's meetup will be about community
Gemini and Gopher Links 10/06/2026: Roasting, Changes, and Harms of Slop
Links for the day
IBM Genies in the Bottle
for ordinary people working who at at IBM, it's not hard to see that IBM is floundering
Microsoft Azure Shrinking With More Mass Layoffs
"Reports suggest the layoffs will impact close to 200 out of 400 workers, who are set to cease employment at Azure on July 6"
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Tuesday, June 09, 2026
IRC logs for Tuesday, June 09, 2026
European Patent Office (EPO) Series: The Centre-Right "Social Democratic Party" in Portugal
Quite an achievement for a former Maoist radical and aspiring champion of the Portuguese proletariat to be invited to join Goldman Sachs
SLAPP Censorship - Part 102 Out of 200: Maybe One Day Whistleblowers From Brett Wilson LLP Will Tell Us What Really Happened
Maybe one day some former staff of Brett Wilson LLP will also approach us to blow the whistle
Gemini Links 09/06/2026: "The Mist of the Lands Between", Board Game Concept
Links for the day
2026: The Year Slop Companies "Made an Exit" (Threw in the Towel Over to Wall Street)
Remember 2026 as the year two major slop companies (which we won't name) sought an IPO
Links 09/06/2026: NSO Group still cracking, "FOI tribunal throws out £14k costs claim against journalist Barnie Choudhury"
Links for the day
Links 09/06/2026: "Smartphones Broke Dating" and "EU Open Source Strategy"
Links for the day
This Coming Friday
Richard Stallman (RMS)
Several Slopfarms That Target "Linux" Seem to Have Died
Or perished severely
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Monday, June 08, 2026
IRC logs for Monday, June 08, 2026
Gemini Links 09/06/2026: Tanana River, Cassette Beasts, and Emacs
Links for the day
IBM's Quantum Bubble Already Deflating
Shares down over $55 in a few days
European Patent Office (EPO) Series: The Brotherhood of São Bento
The Palácio São Bento – or São Bento Palace – is the seat of the Portuguese National Assembly in Lisbon
SLAPP Censorship - Part 101 Out of 200: Women Come to Realise They Don't Wish to Participate in Attacking Vulnerable Women
It relates to another topic that we shall be covering in the coming weeks
Links 08/06/2026: Proprietary Loaded With Security Holes, Armenia Defies Russia
Links for the day
Gemini Links 08/06/2026: NetHack 5.0.0 and Slop as Cannibalism
Links for the day
Links 08/06/2026: "Rising Emissions, Depleting Water" Due to the Pyramid Scheme of Slop; "Canada Needs to Rebuild Public Telecoms"
Links for the day
Brett Wilson LLP Reported to Police for Trying to Throw Large Parcel Into Our Home
This morning the campaign of intimidation...
GAFAM Bots Are Not "Good Bots"
There's nothing "Good" about Google
Links 08/06/2026: Criticism of Microsoft Trying to Criminalise Pointing Out Bug Doors, TikTok Now "Climate-Denying Social Media App"
Links for the day
Slop Has no ROI, an Economy Built on False Assumptions of Slop is Doomed
we're all going to suffer from this Ponzi scheme
The Cyber Show Has "Exciting Guests Coming" and a Gemini Capsule
"Site development is ongoing but now settling into a more stable form"
GNU/Linux Measured at 10% in Liechtenstein This Month
it seems like statCounter wrongly classified some GNU/Linux clients as Mac clients and is now issuing a correction
Communicating With Freedom - Part III - Quibble Envisioned as a New and Easily Accessible Communications Platform Based on LibreJS
the FSF really needs to become more active if not proactive in promoting those sorts of things
Clownflare Says Majority of Web Traffic is Now Bots, But the Net is Another Story
Bots are to Clownflare what lawsuits are to lawyers
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Sunday, June 07, 2026
IRC logs for Sunday, June 07, 2026
The Strikes at the European Patent Office Planned to Carry on for the Entire Year, Maybe Future Years as Well
There's a cautionary tale somewhere
Number of Patent Grants Has Plunged 23% Amid Strikes at the European Patent Office, Today There Are More Strikes (Strike Participation at Over 3,000, More Than Doubled Since Winter)
There is a growing crisis at the European Patent Office
E.E.E. Still Ongoing, the War on Copyleft/GPL Enables That
It also imperils security.