Hi Michael,
yes i think 730 days are a good default. Patch is already made.
Can you merge the already delivered one so i can pull the actual state
and make then an own patch for this ?

Best,

Erik

Am Montag, den 18.06.2018, 14:51 +0100 schrieb Michael Tremer:
> I think that a reasonable default would be 2 years.
> 
> That is already the maximum I would feel comfortable with, but
> certificates
> *must* expire. They should not run for forever.
> 
> But I agree with Tom that there should be an easy way to extend the
> certificate
> and that we should have some UI elements that warn when a certificate
> is going
> to expire in the next ~30 days or so.
> 
> @Erik: Would you be up for implementing this?
> 
> Best,
> -Michael
>