[clintavo]

We've had issues previously with Rackspace and SSL certs expiring (webmail api certs, not mailgun previously). My app has been "broken" twice in the past due to expired certs, to the point that we now monitor all SSL certs used on third party api's that we rely on. (As well as monitoring our own certs of course).

We've got our eye on Rackspace's webmail reseller api's SSL cert, which now has less than 14 days till it expires: https://admin.webmail.us/excedentsoap/excedentsoap.wsdl

[justizin]

Pretty well unacceptable for a major vendor of SSL certs. Wouldn't you hope that Rackspace could help keep you out of this trouble if you bought a cert from them? I wouldn't expect it, since they can't keep themselves out of this sort of trouble.

[clintavo]

To clarify. We don't buy SSL certs from Rackspace. I was referring to Rackspace allowing their OWN certs to expire, breaking api calls made to those endpoints. The URL I linked to was a webmail.us URL which is a Rackspaced-owned domain.

Edit: fixed grammar.

[rossjudson]

This is a really important operational point that deserves highlighting -- make SSL checks part of your monitoring!!!

[djyaz1200]

That's horrifying!