On September 30, 2021, an intermediate certificate used in Let's Encrypt certificates did expire. Even though those certificates are signed with another, valid certificate path, openssl version prior 1.1.0 will use the former, now invalid path to validate a connection. This does affect our managed server version 5 (EOL May 2020). If you encounter any problems, please consider upgrading your server to a new, supported version. If you require the implementation of a short-term workaround, please contact us to validate all possible options.
Technical Details:
- affected Certificate: DST Root CA X3
- affected OpenSSL version: older than 1.1.0
- affected Debian version: 8 (Jessie) and older
- affacted Ops One Managed Server Version: 5 and older
-
Let's Encrypt Article