On 10/23/23 9:43 PM, Matt Palmer via mailop wrote:
On Mon, Oct 23, 2023 at 10:04:25PM -0400, Ian Kelling via mailop wrote:
Philip Paeps via mailop <[email protected]> writes:
On 2023-10-22 14:34:39 (+0530), Slavko via mailop wrote:
Indeed: not directly related to mailops. But a very instructive example
of why monitoring C-T logs is a good idea.
Anyone know how to monitor C-T logs? I looked around a bit and didn't
see how to actually do it for let's encrypt certs.
You *can* do it yourself, by scraping CT logs and looking for certs of
interest, but most people won't want to go to that level of hassle, and
instead will use an existing hosted service. A search for "certificate
transparency monitoring service" will turn up quite a few, there's also a
list of services that's maintained at
https://certificate.transparency.dev/monitors/.
Last I tried that list zero of them actually worked (though admittedly this was a year ago or so).
Censys I couldn't figure out (probably have to pay them?), Cloudflare seemed to only work if you
actually used cloudflare, which I don't, couldn't get crt.sh to send mail, etc, etc. Facebook looked
promising but it wanted to send me a facebook message, which, uhhh, its 2023, who checks those anymore?
Any recommendations for one that actually works (like, sign up, enter some domains and an email, it
sends emails, nothing more, not thousands of dollars a year).
Matt
_______________________________________________
mailop mailing list
[email protected]
https://list.mailop.org/listinfo/mailop
