aboutsummaryrefslogtreecommitdiffstats
path: root/README.d
AgeCommit message (Expand)AuthorFilesLines
2024-06-21certs: E1 / E5 -> ISRG Root X2•••In the beginning of Let's Encrypt their root certificate ISRG Root X1 was not widely trusted, at least some older and/or mobile platforms were missing that certificate in their root certificate store. At that time Let's Encrypt was using an alternative chain of trust, where a certificate was cross-signed with DST Root CA X3. To make sure a valid chain of trust is available under all circumstances a set of all certificates had to be supplied: both root vertificates ISRG Root X1 & DST Root CA X3, and an intermediate certificate. This was still true after DST Root CA X3 expired, as it could still be used as a root anchor and was shipped by Let's Encrypt when requested. 🤪 This time is finally over, and we have a clean chain for trust ending in ISRG Root X1 (or ISRG Root X2). Well, actually it is the other way round... Let's Encrypt signs with different tantamount intermediate certificates. There is not only E5, but also E6 - and we can not know beforehand which one is used on renew. So let's jetzt drop the intermediate certificates now, and rely on root certificates only. We are perfectly fine with this these days. Follow-up commits will do the same for *all* certificates. The certificate is downloaded with: curl -d '["ISRG Root X2"]' https://mkcert.org/generate/ | grep -v '^$' > certs/ISRG-Root-X2.pem Gravatar Christian Hesse3-0/+0
2024-06-19Let's Encrypt changed their intermediate certificates•••https://letsencrypt.org/2024/03/19/new-intermediate-certificates https://letsencrypt.org/certificates/ But let's keep the old ones around for now, as some sites are still using the old intermediate. Gravatar Christian Hesse2-0/+0
2024-04-19README: show fingerprints in output•••This is not scrictly necessary, as we filter by fingerprint already... But it gives better overview and feeling. Gravatar Christian Hesse1-0/+0
2024-04-04README: update screenshot on lease script setupGravatar Christian Hesse1-0/+0
2024-04-04README: add start-time & change interval in scheduler example•••Set the interval to once a day, Instead of every 1 hour. Add start-time to start-up. Thereby introducing randomization based on when the user last rebooted there device. As the interval is counted based on last boot time. Gravatar netravnen1-0/+0
2024-03-15README: add QR code with (shortened) upstream urlGravatar Christian Hesse1-0/+0
2023-11-07README: print name with proplist for certificate verificationGravatar Christian Hesse1-0/+0
2023-10-26global: switch eworm.de to new certificate chain (E1 / ISRG Root X2)•••old chain: R3 / ISRG Root X1 new chain: E1 / ISRG Root X2 No user interaction or migration is required for existing installations as we install 'E1' and 'ISRG Root X2' for some time already. Gravatar Christian Hesse3-0/+0
2023-04-19README: make the screenshot match the exampleGravatar Christian Hesse1-0/+0
2023-03-06... and update the logo in notificationsGravatar Christian Hesse2-0/+0
2023-02-17README: move configuration down, make it a separate paragraphGravatar Christian Hesse10-0/+0
2023-01-11README: install custom script from routeros-scripts-customGravatar Christian Hesse1-0/+0
2022-10-31README: copy *relevant* configuration onlyGravatar Christian Hesse1-0/+0
2022-10-20README: update notification•••---- ✂️ ---- 📌 News and configuration changes The configuration version on MikroTik increased to 85, current configuration may need modification. Please review and update global-config-overlay, then re-run global-config. Changes: ● Support for e-mail notifications moved to a module. It is installed automatically if required. ● Dropped 'netwatch-syslog', filtering in firewall is advised. ---- ✂️ ---- Gravatar Christian Hesse2-40/+0
2022-08-22optimize all svg files...•••... and also update all version numbers to match current release. Gravatar Christian Hesse1-200/+37
2022-07-07README: show a sample news and changes notificationGravatar Christian Hesse1-0/+203
2022-07-06global-config: new setting to disable news and change notifications...•••... and also drop the version from global-config and global-config-overlay. change-83Gravatar Christian Hesse1-0/+0
2022-06-28README: How to remove a script...Gravatar Christian Hesse1-0/+0
2022-05-12README: RouterOS v7 path syntaxGravatar Christian Hesse13-1/+1
2022-05-05README: installing custom scripts & modulesGravatar Christian Hesse2-0/+3
2022-01-14README: install correct global-config-overlay for RouterOS v6branch-routeros-v6Gravatar Christian Hesse1-0/+0
2022-01-03README: convert screenshots to AVIFGravatar Christian Hesse22-0/+0
2022-01-03README: convert Telegram group qr code to AVIFGravatar Christian Hesse2-0/+0
2021-12-30README: add Telegram icon in qr codeGravatar Christian Hesse1-0/+0
2021-12-30README: add a qr code to join Telegram groupGravatar Christian Hesse1-0/+0
2021-12-07global-config: load overlay automaticallyGravatar Christian Hesse1-0/+0
2021-09-21README: use real screenshots...•••... and make sure copy-and-paste with code does not fail. Also end all commands with a semicolon for Github copy button. Gravatar Christian Hesse11-0/+0