http://www.comodo.com/e-commerce/SHA-2-transition.php How does this affect ISPConfig (issuing a certificate for a client's website, or the main server certificate)? Any plans to start supporting the new certificates if not already done? Since new certificates can already be issued using SHA-2, I don't see why we shouldn't start using the new certificates starting now for certificates that need to be renewed. I checked a couple SSL certificates that were issued recently (after the heartbleed fiasco) and they were SHA-1. If I completely missed the point, please feel free to throw rotten tomatoes at me. Edit:spelling
Updates on the subject: http://googleonlinesecurity.blogspot.com/2014/09/gradually-sunsetting-sha-1.html Good to see that since I reported it in March, there has been an active discussion about this and steps were taken to implement my suggestion in ISPConfig... Here's the related bug: http://bugtracker.ispconfig.org/index.php?do=details&task_id=3435
