Notes from #MetaBrainz Meeting on 2016-08-29

metabrainz-meeting-notes
Tags: #<Tag:0x00007f23c59bed90>

#1

#MetaBrainz Meeting 2016-08-29

Meeting start: https://chatlogs.metabrainz.org/brainzbot/metabrainz/msg/3677619/

Agenda

  • Reviews

Reviews

@Freso

https://chatlogs.metabrainz.org/brainzbot/metabrainz/msg/3677623/

@reosarevok

https://chatlogs.metabrainz.org/brainzbot/metabrainz/msg/3677632/

@bitmap

https://chatlogs.metabrainz.org/brainzbot/metabrainz/msg/3677643/

@Gentlecat

https://chatlogs.metabrainz.org/brainzbot/metabrainz/msg/3677662/

@zas

https://chatlogs.metabrainz.org/brainzbot/metabrainz/msg/3677670/

@Rob

https://chatlogs.metabrainz.org/brainzbot/metabrainz/msg/3677685/

@alastairp

https://chatlogs.metabrainz.org/brainzbot/metabrainz/msg/3677692/

@CatQuest

https://chatlogs.metabrainz.org/brainzbot/metabrainz/msg/3677723/

@rahulr

https://chatlogs.metabrainz.org/brainzbot/metabrainz/msg/3677732/

@kartikgupta0909

https://chatlogs.metabrainz.org/brainzbot/metabrainz/msg/3677742/


#2

Let’s encrypt does support multiple domains being present by setting subject alternatie names.
You can have up to 99 domain names used by the one ssl certificate.
To get this working you need to create a certificate signing request with all the domains you want defined as san.
You also will need to have the same file mapping work to a common directory used to verify the domain ownership as let’s encrypt will one by one verify each domain mentioned.


#3

I think the point was that it doesn’t support wildcards. I think both musicbrainz.org and metabrainz.org currently has *.m{eta,usic}brainz.org certificates.


#4

The main draw of wildcard certificates is price (if you otherwise need a lot of certs), and that you can roll out new hostnames in a snap. LE certificates got you covered on both counts.

The downside of LE is that, once you have more than one or two certificates, you practically must implement automation. Once you are past that hump, it does not matter much whether you have two (maybe wildcard) certificates, or two hundred.