More

hamdingers · 2026-01-17T16:39:41 1768667981

> Historically, they did because everyone's capacity for violence was equal.

This is so wildly ahistorical I'm immediately suspicious of your intentions.

The US alone offers plenty of counterexamples from the last ~50 years.

hamdingers · 2026-01-17T00:34:16 1768610056

Try something else until it does.

The only other option is to go on being miserable.

hamdingers · 2026-01-16T19:51:00 1768593060

Even fewer people want to wear earmuffs while hiking.

recursive · 2026-01-17T00:20:08 1768609208

There are so many styles and those people can choose one consistent with their muff preferences.

hamdingers · 2026-01-16T19:41:26 1768592486

It's actually 6 and 2/3rds! I'm trying to figure out a rationale for 160 hours and similarly coming up empty, if anyone knows I'd be interested.

200 would be a nice round number that gets you to 8 1/3 days, so it comes with the benefits of weekly rotation.

mcpherrinm · 2026-01-16T22:47:08 1768603628

I chose 160 hours.

The CA/B Forum defines a "short-lived" certificate as 7 days, which has some reduced requirements on revocation that we want. That time, in turn, was chosen based on previous requirements on OCSP responses.

We chose a value that's under the maximum, which we do in general, to make sure we have some wiggle room. https://bugzilla.mozilla.org/show_bug.cgi?id=1715455 is one example of why.

Those are based on a rough idea that responding to any incident (outage, etc) might take a day or two, so (assuming renewal of certificate or OCSP response midway through lifetime) you need at least 2 days for incident response + another day to resign everything, so your lifetime needs to be at least 6 days, and then the requirement is rounded up to another day (to allow the wiggle, as previously mentioned).

Plus, in general, we don't want to align to things like days or weeks or months, or else you can get "resonant frequency" type problems.

We've always struggled with people doing things like renewing on a cronjob at midnight on the 1st monday of the month, which leads to huge traffic surges. I spend more time than I'd like convincing people to update their cronjobs to run at a randomized time.

mike_d · 2026-01-17T11:53:08 1768650788

I have always been a bit puzzled by this. By issuing fixed length certificates you practically guarantee oscillation. If you have a massive traffic spike from, say, a CDN mass reissuing after a data breach - you are guaranteed to have the same spike [160 - $renewal_buffer] hours later.

Fuzzing the lifetime of certificates would smooth out traffic, encourage no hardcoded values, and most importantly statistical analysis from CT logs could add confidence that these validity windows are not carefully selected to further a cryptographic or practical attack.

A https://en.wikipedia.org/wiki/Nothing-up-my-sleeve_number if you will.

cpach · 2026-01-17T18:59:32 1768676372

There is a solution for smoothing out the traffic: RFC 9733, ACME Renewal Information (ARI) Extension

https://datatracker.ietf.org/doc/rfc9773/

mike_d · 2026-01-17T23:55:25 1768694125

That only addresses half the problem and is just a suggestion vs something clients can't ignore.

dtech · 2026-01-16T19:47:16 1768592836

It's less than 7 exactly so you cannot set it on a weekly rotation

tensegrist · 2026-01-16T20:25:31 1768595131

biweekly rotation?

UqWBcuFx6NV4r · 2026-01-17T03:11:13 1768619473

We say pan-weekly these days

saintfire · 2026-01-17T01:00:22 1768611622

Or is it semi-weekly?

hamdingers · 2026-01-16T15:20:59 1768576859

Breaking prod repeatedly probably impacts your stack ranking too.

Jtsummers · 2026-01-16T15:25:22 1768577122

Depends on how easily the failure is connected back to you personally. If you introduce a flaw this year and it breaks the system in two years, it won't fall back on you but the poor sap that triggered your bug.

actionfromafar · 2026-01-16T17:08:52 1768583332

So can "heroically" save prod ... anti patterns.

hamdingers · 2026-01-16T15:15:46 1768576546

I'm not convinced that's their goal any more. The number of users turning off or ignoring AI features is probably considered a problem, not a signal.

hamdingers · 2026-01-15T21:12:10 1768511530

This suggests one article or the other is incomplete.

To have evidence of bias, you would have to show that a paragraph like the one in the English article would be rejected for the German one.

hamdingers · 2026-01-15T20:59:33 1768510773

In order to find this useful you would have to believe that Jimmy Wales writes the articles on Wikipedia which is a ridiculous notion.

nephihaha · 2026-01-16T12:51:51 1768567911

Rich people don't write articles on Wikipedia. They pay other people to do so. Some of the articles on billionaires read like hagiographies.

hamdingers · 2026-01-14T18:43:13 1768416193

"Give up" is not the best option. Certainly not from the EFF's perspective.

JoshTriplett · 2026-01-14T19:41:55 1768419715

I mean, the best option is to fight this legislation, and AIUI they're doing that too. But this article is not about that, it's about how to minimize the harm if you encounter it.

hamdingers · 2026-01-14T17:10:34 1768410634

Many open source projects are created by engineers being paid to solve a problem their employer has, and they just happen to release it freely.

I don't think Google needs a dollar every time I write a script in golang or run a container in kubernetes, and I would put a lot less trust in Envoy if I thought Lyft was building it profit and not because they needed to.