SSLMate Change Log

This page lists new features and other notable changes in reverse chronological order. Stay up-to-date by subscribing with Atom or email.

2020-05-05: Push Notifications

You can now receive realtime push notifications when Cert Spotter discovers an unknown certificate, or when SSLMate issues you a certificate. Requires Android, Chrome OS, or a modern desktop browser. (Unfortunately, iOS does not support the Web Push standard.)

Visit your push notifications page to configure.

2020-03-12: Flexible Email Routing

If you subscribe to the Startup or Business plans, you can now route certain account emails to alternative email addresses:

  • Invoices
  • Unknown certificate alerts
  • Daily summary about expirations detected by Cert Spotter

For example, you could route invoices to your accountant, unknown certificate alerts to your security team, and the expiration emails to your infrastructure team.

Visit your email preferences page to configure.

2020-03-12: Account Audit Logs

SSLMate now keeps an audit log of the following account actions:

  • Login
  • Change password
  • Change email address
  • Add/remove security key

Logs entries are retained for at least 7 days, depending on the plan you are subscribed to. (The business plan offers unlimited retention.)

2020-02-10: Cert Spotter: Use CAA records to authorize certificate issuance

You can now configure Cert Spotter to consult CAA records when deciding if a certificate is authorized. Visit your Cert Spotter settings to enable. Read our blog post for details.

2020-02-07: Fixed Bug Affecting 2FA with YubiKey 5

This week, we fixed a bug with two factor authentication which prevented the YubiKey 5 series (and possibly other security keys that support FIDO2) from being added to your account. If you had trouble adding a security key to your account, we recommend trying again.

2020-01-28: Cert Spotter: Improved wildcard handling

Cert Spotter now considers wildcard certificates when monitoring a hostname. For example, if you are monitoring, Cert Spotter will examine certificates for * when looking for expiring and unauthorized certificates.

2020-01-06: Phishing-Proof Two Factor Authentication

You can now use security keys such as the YubiKey as a second, phishing-proof authentication factor for your SSLMate account. Visit your account settings to enable.

We plan to support passwordless authentication in the near future.

2020-01-06: Cert Spotter: Yearly Subscriptions

Cert Spotter can now be purchased on a yearly basis. If you're currently a subscriber, you can switch to a yearly plan.

2020-01-06: Preview: Cert Spotter: API to Add/Remove Monitored Domains

We're testing out an API for programatically adding/removing the domains that are monitored by Cert Spotter. Please contact us if you are interested.

2020-01-06: Preview: Cert Spotter API: Firehose

We're testing out a firehose option for the Cert Spotter API to allow you to ingest all new certificates from public Certificate Transparency logs, using one convenient API endpoint. Please contact us if you are interested.

2019-12-16: Cert Spotter: expiration threshold can now be configured

You can now configure the number of days before expiration at which Cert Spotter begins alerting about an expiring certificate. (Previously, it was always 30 days.)

2019-12-16: Cert Spotter: sub-domain inclusion/exclusion can now be configured

When adding a monitored domain, you can now choose whether or not sub-domains should also be monitored. (Previously, sub-domains were always monitored.)

When adding an excluded sub-domain, you can now choose whether or not sub-domains of the excluded sub-domain should also be excluded. (Previously, sub-sub-domains were never excluded.)

2019-12-11: Change Log

SSLMate now has a change log that lists new features and other notable changes.

Get Started with SSLMate Today

Click to sign up