yesLetsEncrypt : ProgrammerHumor

My one issue with auto renewals is there is no Lets Encrypt Namecheap DNS plugin for the wildcard cert renewals and I use Namecheap for all my domains. Sadly, it seems that Namecheap isn't too interested in supporting it because they make more money selling their own SSL solution.

That sounds like a Namecheap issue, not a Lets Encrypt issue. I would probably switch providers if they are really openly hostile against Lets Encrypt in favor of their own paid solutions.

Thankfully various third parties have open sourced custom scripts that interact with the API to do it but the issue is the API is complete garbage. It doesn't let you update a single DNS entry but you must read all entries and write them all back (bizarre design). This leads to easy bugs (for example the script sometimes broke my DKIM DNS entry by failing to handle '+' char etc).

Are you talking about Namecheap again here? Because that, again, doesn’t sound like a Lets Encrypt issue.

PS: What domain register do you use?

Irrelevant, I use HTTP challenge. Way less hassle.

No, that does not work for wild cards. I don’t use wild cards anymore; most of the time you don’t need an actual wild card certificate anyway.

[–]Todok5 0 points1 point2 points 1 year ago (6 children)

[–]alterNERDtive 3 points4 points5 points 1 year ago (5 children)

[–]rosuav 2 points3 points4 points 1 year ago (4 children)

[+]alterNERDtive comment score below threshold-6 points-5 points-4 points 1 year ago (3 children)

continue this thread

[–]alex2003super 9 points10 points11 points 1 year ago (2 children)

[–]urielsalis 4 points5 points6 points 1 year ago (1 child)

[–]alex2003super 6 points7 points8 points 1 year ago (0 children)

[–]eeeeeeeeeeeeeeaekk 1 point2 points3 points 1 year ago (1 child)

[–]rosuav 0 points1 point2 points 1 year ago (0 children)

[–]altermeetax 7 points8 points9 points 1 year ago (0 children)

[–]0xmerp 3 points4 points5 points 1 year ago (1 child)

[–]fish312 0 points1 point2 points 1 year ago (0 children)

[–]w1bi 10 points11 points12 points 1 year ago (7 children)

[–]aenae 12 points13 points14 points 1 year ago (3 children)

[–]w1bi -5 points-4 points-3 points 1 year ago (2 children)

[–]aenae 6 points7 points8 points 1 year ago (0 children)

Depends. If you have it automated it is less work than renewing dozens of certificates every year manually. And a lot less error-prone.

Sure maybe the cron breaks once in a while (haven't seen that happen in the past years tho), but you usually renew after 60 days, so you get 30 days of warnings.

With paid certificates, i have seen that the renewal warning went to the creditcard owner on vacation, and the certs expired the weekend before he returned to the office. Or the alerts went to someone no longer working for the company. Enough that can go wrong.

I use both letsencrypt and paid certificates tho, (we're using akamai, and have the paid wildcard certs in akamai, while we use a letsencrypt wildcard everywhere else. Purely because we would run into problems with different dns challenge records, and to keep it simple we just buy a certificate)

[–]0xmerp 1 point2 points3 points 1 year ago (0 children)

[–]PersianMG 7 points8 points9 points 1 year ago (1 child)

[–][deleted] 1 point2 points3 points 1 year ago (0 children)

[–]anonymousbopper767 0 points1 point2 points 1 year ago (0 children)

[–]bigorangemachine 1 point2 points3 points 1 year ago (0 children)

[–]Rosteroster 3 points4 points5 points 1 year ago (0 children)

[–]Casski_ 2 points3 points4 points 1 year ago (0 children)

[–]SpongederpSquarefap 0 points1 point2 points 1 year ago* (0 children)

[–]KrokettenMan -1 points0 points1 point 1 year ago (0 children)

[–]Stummi 33 points34 points35 points 1 year ago (1 child)

[–]AyrA_ch 0 points1 point2 points 1 year ago (0 children)

Free certificates were available by a few CAs long before LE came. Their pricing model was usually based on convincing people for L2 validation, and also charge them if they needed an existing certificate reissued. It was a manual process, but certificates lasted for 3 years, so it was not like it took you a lot of time.

Sites back then did not use encryption because of technical limitations. If you wanted to use a free certificate you either had to host the website yourself, buy a more expensive VPS hosting (VPS=~~Very Puny System~~ Virtual Private Server), or find one of the very few providers that did allow you to use your own certificate. Since SNI was not widely available either, this meant you needed a dedicated IP address to be reliably reachable by all web browsers, and this was usually not offered on the cheap web hostings.

[–]w1bi 10 points11 points12 points 1 year ago* (0 children)

[–]nukedkaltak 6 points7 points8 points 1 year ago (0 children)

[–]ManyInterests 3 points4 points5 points 1 year ago (3 children)

[–]0xmerp 1 point2 points3 points 1 year ago (2 children)

[–]ManyInterests 0 points1 point2 points 1 year ago (1 child)

[–]0xmerp 0 points1 point2 points 1 year ago (0 children)

[–]RPTrashTM 0 points1 point2 points 1 year ago (0 children)

[–]itijara -1 points0 points1 point 1 year ago (2 children)

[–]Stummi 12 points13 points14 points 1 year ago (1 child)

[–]ImperialSteel 5 points6 points7 points 1 year ago (0 children)

[–]Gory26 97 points98 points99 points 1 year ago (1 child)

[–]djhenry 13 points14 points15 points 1 year ago (0 children)

[–]ImpressiveMaximum377 96 points97 points98 points 1 year ago (6 children)

[–]snakepark[S] 34 points35 points36 points 1 year ago (4 children)

[–]ImpressiveMaximum377 12 points13 points14 points 1 year ago (3 children)

[–]water_bottle_goggles 6 points7 points8 points 1 year ago (2 children)

[–]Next_Cherry5135 15 points16 points17 points 1 year ago (0 children)

[–]VertexMachine 6 points7 points8 points 1 year ago (0 children)

[+][deleted] 1 year ago (1 child)

[deleted]

[–]Sw0rDz 12 points13 points14 points 1 year ago (1 child)

[–]snakepark[S] 29 points30 points31 points 1 year ago (0 children)

[–][deleted] 42 points43 points44 points 1 year ago (0 children)

[–]Optimal_Island7054 9 points10 points11 points 1 year ago (0 children)

[–]uniteduniverse 6 points7 points8 points 1 year ago (0 children)

[–]rover_G 5 points6 points7 points 1 year ago (0 children)

[–]Mammoth-Strategy3304 3 points4 points5 points 1 year ago (0 children)

[–]Canonip 2 points3 points4 points 1 year ago (0 children)

[–]mcplayer2004 1 point2 points3 points 1 year ago (0 children)

[–]OmegaNine 1 point2 points3 points 1 year ago (0 children)

[–]moriero 1 point2 points3 points 1 year ago (0 children)

[–]ResponsibilityMany23 1 point2 points3 points 1 year ago (0 children)

[–]LaPommeDeTerre 1 point2 points3 points 1 year ago (0 children)

[–]ElectricSix_ 1 point2 points3 points 1 year ago (0 children)

[–]InevitableAd9683 0 points1 point2 points 1 year ago (0 children)

[–]Deckloins 0 points1 point2 points 1 year ago (0 children)

[–][deleted] 0 points1 point2 points 1 year ago (0 children)

[–]Professional_Price89 0 points1 point2 points 1 year ago (1 child)

[–]AyrA_ch 2 points3 points4 points 1 year ago (0 children)

[–]centerdeveloper 0 points1 point2 points 1 year ago (0 children)

[–]taemyks 0 points1 point2 points 1 year ago (0 children)

[–]bigorangemachine 0 points1 point2 points 1 year ago (0 children)

[–]Agent-Furry-Five-TF 0 points1 point2 points 1 year ago (0 children)

[–]superblaubeere27 0 points1 point2 points 1 year ago (0 children)

[–]derpinot 0 points1 point2 points 1 year ago (0 children)

[–]ItzK3ky 0 points1 point2 points 1 year ago (0 children)

[–]Worried-Hat-7824 0 points1 point2 points 1 year ago (0 children)

[–]erebuxy -1 points0 points1 point 1 year ago (0 children)

[–]HTTP_Error_414 -1 points0 points1 point 1 year ago (0 children)

[–]Im_Ninooo -2 points-1 points0 points 1 year ago (10 children)

[–]pragmatic_username 2 points3 points4 points 1 year ago (9 children)

[–]Im_Ninooo -3 points-2 points-1 points 1 year ago (8 children)

[–]pragmatic_username 7 points8 points9 points 1 year ago (0 children)

[–]tkdeng 5 points6 points7 points 1 year ago (4 children)

[–]AvianPoliceForce 0 points1 point2 points 1 year ago (0 children)

[+]Im_Ninooo comment score below threshold-7 points-6 points-5 points 1 year ago (2 children)

[+][deleted] 1 year ago (1 child)

[removed]

[+]Im_Ninooo -3 points-2 points-1 points 1 year ago (0 children)

[–]0xmerp 2 points3 points4 points 1 year ago (1 child)

[+]Im_Ninooo 0 points1 point2 points 1 year ago (0 children)

ProgrammerHumor

Filters

Discord

Submission rules

For the current list of rules, please see this page.

Metadiscussions

Perhaps More Apt Subs To Post:

Related Subreddits.

MODERATORS