SSL certificate lifetimes are going down. Dates proposed. 45 days by 2027.

Goddamn this is fucking idiotic. Creates a huge amount of hassle and work for absolutely zero increase in security for anyone anywhere ever. And many devices and components that use certs, updating cannot be automated.

Also, the advice of “just set up a private Certificate Authority then” is also tremendously clueless. I have done this and it’s very hard. It’s out of the realm of most tech people’s skills, even good ones. And it requires maintenance. It’s not a “for free” thing.

The whole tech industry if full of clownish losers.