pcouy@lemmy.pierre-couy.fr to Technology@lemmy.worldEnglish · 1 day agoLet's Encrypt is 10 years old today !letsencrypt.orgexternal-linkmessage-square53fedilinkarrow-up1868arrow-down14file-textcross-posted to: selfhosted@lemmy.worldtechnology@beehaw.orgcybersecurity@sh.itjust.worksselfhosting@slrpnk.net
arrow-up1864arrow-down1external-linkLet's Encrypt is 10 years old today !letsencrypt.orgpcouy@lemmy.pierre-couy.fr to Technology@lemmy.worldEnglish · 1 day agomessage-square53fedilinkfile-textcross-posted to: selfhosted@lemmy.worldtechnology@beehaw.orgcybersecurity@sh.itjust.worksselfhosting@slrpnk.net
Happy birthday to Let’s Encrypt ! Huge thanks to everyone involved in making HTTPS available to everyone for free !
minus-squarejj4211@lemmy.worldlinkfedilinkEnglisharrow-up2·6 hours agoJust two months ago, a security team member dinged one of our services for using Lets Encrypt, as “it’s not as secure as a traditional CA”.
minus-squareEnderMB@lemmy.worldlinkfedilinkEnglisharrow-up1·2 hours agoIt’s sad that these arguments are still being shared. It was the same arguments years ago from people that would just assume that a free cert was inherently unsafe.
minus-squarebfg9k@lemmy.worldlinkfedilinkEnglisharrow-up2·3 hours agoI’d love for them to explain how, if anything the short cert validity and constant re-checking of the domain seems more secure than traditional CAs
Just two months ago, a security team member dinged one of our services for using Lets Encrypt, as “it’s not as secure as a traditional CA”.
It’s sad that these arguments are still being shared. It was the same arguments years ago from people that would just assume that a free cert was inherently unsafe.
I’d love for them to explain how, if anything the short cert validity and constant re-checking of the domain seems more secure than traditional CAs