GitLab now enforces expiry dates on tokens that originally had no set expiration date. Those tokens were given an expiration date of one year later. Please review your personal access tokens, project access tokens, and group access tokens to ensure you are aware of upcoming expirations. Administrators of GitLab can find more information on how to identify and mitigate interruption in our documentation.
Admin message
Self sign-up has been disabled due to increased spam activity. If you want to get access, please send an email to a project owner (preferred) or at gitlab(at)nic(dot)cz. We apologize for the inconvenience.
**Question:** I've installed the DNSSEC/TLSA Validator extension into **Firefox on Windows**. The DNSSEC-related part of the extension seems to work well. The key icon usually becomes green on domains secured with DNSSEC. But the padlock icon seem not to work. Either it is saying that there is no TLSA record or it becomes red and the description text says that the certificate does not match the TLSA record.
**Answer:** In most cases this behaviour is caused by an antivirus messing with the HTTPS communication with the server. Many of the today's antivirus programmes, such as Avast and others, have components that interfere with the HTTPS communication. They try to behave as a man in the middle and scan the communication for malicious content. Because the browser would normally complain about such interference the antivirus has to act as a HTTPS server and needs to provide its own server certificate. This certificate naturally does not match the TLSA record.
Check the information about the page certificate - it should be obvious that the certificate is related to your antivirus programme (AV). Go into the settings of your antivirus and disable HTPPS testing (or how it is called in your AV). This should fix your problem.