2021-10-05 SSL Root certificate expiry

From Wikistix

So, I got a tech support call from a friend. Their 2008 model iMac, running the latest supported version of Mac OS X (10.11.6, El Capitan), was throwing NET::ERR_CERT_DATE_INVALID errors to a bunch of web sites, from all browsers. This is due to the expiry of an SSL root certificate, IdenTrust R3 DST Root CA X3. Following the instructions here, I installed the new ISRG Root X1, and got them back up and running.

I'm sure their old OS is full of security holes, but there's probably little on there of interest. They were extremely grateful they didn't have to shell out thousands for an "unnecessary" upgrade.

This kind of forced obsolescence is annoying at the least, and downright wasteful. Ok, so Apple doesn't want to support a perfectly functional 13 year old computer? Sure, there's no money in it for them. But that should be factored in. Support the environment, continue to support the old stuff, don't require people to churn gear unnecessarily.

Retrieved from "https://www.stix.id.au/wiki/index.php?title=2021-10-05_SSL_Root_certificate_expiry&oldid=3635"