Our old SSL cert expired today, so we've updated ours and are now using Lets Encrypt to manage our SSL certificate. Let's Encrypt is an important part of securing the web and I'm excited to be able to use it for hubski. Plus it saves us money, so there's also that.
I like that Mozilla accepts it automatically, I was worried that Let's Encrypt might throw up warnings that would stop it getting widespread use. I also like that clicking the padlock and seeing page info shows: Have I visited this web site before today? Yes, 1,098 times.
Nice. I work in web hosting on the architecture/infrastructure side. I might look into this in the future. But we're a major financial, so hard to say if they'd bite, but I LOVE the idea. We're all SHA2 on Thawte currently, which honestly isn't the beacon of security when you think SSL certs anyway. Chrome, IE, and Firefox all checkout the Hubski cert as good for me. So... awesome! Are certs free from Lets Encrypt? Even for profit sites, or for say, enterprise level sites? I cruised around their site a bit but didn't find the info I was looking for. The site had a lot of verbiage about how certs work which I'm all too familiar with, but didn't find the more industry info I was looking for. Perhaps I missed it.
Yeah... that's a deal breaker for a company my size. Just on my two web apps I probably have 100+ certs and we do two year rotations. Yeah it's mostly scripted for the replacement, but I still gotta get on during a late night maint window, do a rolling release through the load pool, have QA smoke test each server, then do a pool smoke test, yada yada. Not worth it. 90 days is far too fucking short. That introduces too much risk into an environment. thank you for the info though!Certs expire after only 90 days
Certs are totally free from Lets Encrypt, even for enterprise level sites. I don't know of what large sites use it yet, but it's definitely possible.