Hi, On Thu, 27 Nov 2025 at 16:00, Aleksander Alekseev <[email protected]> wrote: > > Hi, > > I've just discovered that cfbot has a little problem with TLS: > > ``` > $ curl -vvv https://cfbot.cputube.org > * Host cfbot.cputube.org:443 was resolved. > * IPv6: (none) > * IPv4: 139.180.174.5 > * Trying 139.180.174.5:443... > * Connected to cfbot.cputube.org (139.180.174.5) port 443 > * ALPN: curl offers h2,http/1.1 > * TLSv1.3 (OUT), TLS handshake, Client hello (1): > * CAfile: /etc/ssl/certs/ca-certificates.crt > * CApath: /etc/ssl/certs > * TLSv1.3 (IN), TLS handshake, Server hello (2): > * TLSv1.3 (IN), TLS handshake, Encrypted Extensions (8): > * TLSv1.3 (IN), TLS handshake, Certificate (11): > * TLSv1.3 (OUT), TLS alert, certificate expired (557): > * SSL certificate problem: certificate has expired > * Closing connection > curl: (60) SSL certificate problem: certificate has expired > More details here: https://curl.se/docs/sslcerts.html > > curl failed to verify the legitimacy of the server and therefore could not > establish a secure connection to it. To learn more about this situation and > how to fix it, please visit the web page mentioned above. > ``` > > The non-encrypted version serves fine. Sorry for the message to a wide > audience, but I don't know who maintains cfbot.
Thomas and Jelte maintain the CFBot. AFAIK, CFBot has worked like that from the start so I guess that is expected. -- Regards, Nazir Bilal Yavuz Microsoft
