| ▲ | vbezhenar 10 hours ago |
| My experience was: get 3-year certificate for free, install it and forget about it. With LetsEncrypt, it's always pain, expired websites everywhere. Too bad that american IT mafia put these good CA out of business. |
|
| ▲ | another-dave 11 minutes ago | parent | next [-] |
| Literally all you have to do is configure a cronjob to renew the cert? I've got a website I build for a friend running that I haven't touched in 5 years TLS-wise, never had any issues. |
|
| ▲ | jojomodding 10 hours ago | parent | prev | next [-] |
| I was about to say that I never encounter TLS errors while browsing, but that's not strictly true. There is one such website, and it's only because the webmaster had a stroke and can't maintain it currently. But apart from that rather sad story I can't relate to your issues at all. |
| |
| ▲ | selcuka 8 hours ago | parent [-] | | I agree. I don't remember the last time I saw an expired cert, and it was probably an abandoned web site (which would eventually expire even with a 3-year certificate as well). At least with Let's Encrypt you have to automate it. |
|
|
| ▲ | mardifoufs 6 hours ago | parent | prev [-] |
| American IT Mafia? That provides free certificates? You'd think setting up renewal would be less of a hassle than dealing and paying CAs even if it's once every 3 years, so that would be a rather benevolent mafia. Which of those CAs went out of business by the way? Do you think Let's encrypt is less popular outside the US? |
| |
| ▲ | vbezhenar 5 hours ago | parent [-] | | StartSSL, WoSign were the ones I've used. Very convenient services, much more convenient, compared to this certbot insanity. I think that the rest of the world does not have much choice, because US uses their IT superiority to force political decisions to the rest of the world. I experienced that first-hand. When my country wanted to implement MITM to improve Internet usability for their citizens, US companies blacklisted government root certificate which disrupted this scheme and forced my country to roll back this plan. Now I have lots of websites completely blocked, instead of more careful and precise per-page blocking that would only be possible with MITM. Hopefully, over time, China and Russia will destroy this superiority and will provide viable alternatives. | | |
| ▲ | ascorbic 4 hours ago | parent [-] | | I had to deal with StartCom once many years ago, before LetsEncrypt. They had the rudest customer service I think I've ever encountered. |
|
|
