Previous: Mon 18 Dec 2023
Next: Mon 1 Jan 2024
- Added Let’s Encrypt Nameserver Daemon (
lend) and client (lenc) to eon, which provisions TLS certs with the ACME DNS challenge inside the nameserver modifying the trie directly.- Required porting ocaml/letsencrypt to Eio 0.12.
- Added a Capnp RPC interface to provision certificates using this
creating Let’s Encrypt Nameserver Cap’n Proto (
lenscap). There’s still work to do including supporting renewals with capnp callbacks which will probably require sturdy refs, the story for which persisting seems complicated. - Read RFC9518
on the train up to Scotland.
- It talks about how technical decentralisation is necessary but not sufficient. Section 3.1 talks about issues with federation in the centralisation of SMTP providers and how XMPP federation is voluntary. Matrix bridges are an interesting form of involuntary federation as is playing out with Apple and Matrix-based Beeper right now.