| ▲ | Aardwolf 15 hours ago |
| Agreed! What were we using before Let's Encrypt again? Maybe just plain HTTP |
|
| ▲ | ZeroConcerns 15 hours ago | parent | next [-] |
| Mostly Verisign, which required faxing forms and eye-watering amounts of money. Then Thawte, which brought down prices to a more manageable US$500 per host or so. Which might seem excessive, but was really peanuts compared to the price of the 'SSL accelerator' SBus card that you also needed to serve more than, like, 2 concurrent HTTPS connections. And you try telling young people that ACME is a walk in the park, and they won't believe you... |
| |
| ▲ | anamexis 14 hours ago | parent | next [-] | | And then sketchy resellers for Verisign/Thawte, which were cheap but invariably had websites that ironically did not inspire confidence in typing in your credit card number. | |
| ▲ | dylan604 14 hours ago | parent | prev [-] | | As GP posited, because of this headache, lots of web traffic was plain ol' HTTP. Let's Encrypt is owed a lot of credit for drastically reducing plain ol' HTTP. |
|
|
| ▲ | SirMaster 15 hours ago | parent | prev | next [-] |
| I was using StartCom StartSSL which was offering free 1 year certificates at least for my personal sites. |
| |
| ▲ | 0x0 14 hours ago | parent [-] | | They were great in the beginning, and then when you issued a few more certs than they liked you were asked to pony up some $$$, and then when you did that and actually "verified" who you were on a personal international phone call, you got a grace, and then issued a few more, they decided they didn't like you so they would randomly reject your renewals close to the expiration date, and then they got bought out by some scummy foreign outfit which apparently caused the entire CA to be de-listed as untrustworthy in all major browsers. Quite the ride. Also, the only website I've ever encountered that actually used the HTML <keygen> tag. |
|
|
| ▲ | 15 hours ago | parent | prev | next [-] |
| [deleted] |
|
| ▲ | bakies 15 hours ago | parent | prev | next [-] |
| Self signed certs. I wasn't paying. |
| |
| ▲ | Thaxll 15 hours ago | parent [-] | | Some of them were not expensive but it was not convenient at all. |
|
|
| ▲ | asadotzler 15 hours ago | parent | prev | next [-] |
| SSL/TLS via expensive and hard to work with providers and tooling. Let's Encrypt made it free and easy to maintain. |
|
| ▲ | rew0rk 15 hours ago | parent | prev | next [-] |
| either you used http, self signed if you did not mind the warning, and i remember there being one company that did offer free certificates that validated, but cant remember the name of it |
| |
| ▲ | SahAssar 15 hours ago | parent | next [-] | | > i remember there being one company that did offer free certificates that validated, but cant remember the name of it You're probably thinking of StartSSL, and it was a bit of a pain to get it done. | |
| ▲ | tomklein 15 hours ago | parent | prev [-] | | I believe it was StartSSL and/or WoSign back then |
|
|
| ▲ | 1f60c 14 hours ago | parent | prev [-] |
| The pros were using client-side encryption :D |
