automatic monitoring of domain and certificate expiry

[mikedlr]

In order to ensure spamgourmet service continues, it would be really useful to have automatic warnings if a domain or SSL certificate gets close to (but is not yet at) expiry.

The current hope was to get all domains and certificates to auto-renew. If that system fails then this system should be the backup. That means that we need to be able to do the warning shortly after the auto renew fails to get maximum time to act.

• the warning period needs to be configured per domain
• this system should allow the admins to get an automatic notification
• preferably this should be public so that anyone interested can follow up and help
• this should not directly involve any other spamgourmet systems so that it can be delegated away from admins to the maximum degree possible.
• there should not be a public list of domains to monitor - instead you should have to explicitly enter those domains you are interested in. E.g. this could be done by having a separate account for each domain.

See also #35 for discussion about SMTP domain monitoring - both requests are valid.

[mikedlr]

The discussion that triggers this ticket is on the BBS. The tool used to warn about this problem seems to be track SSL which offers automatic emails warning about domains close to expiry (for example for spamgourmet.com). That might be a good interim tool for now, with some people signing up for each of the domains they care about or something.