[talk] SSL certificates
Pete Wright
pete at nomadlogic.org
Tue Sep 12 11:39:22 EDT 2017
On 09/12/2017 07:38, Michael W. Lucas wrote:
> On Tue, Sep 12, 2017 at 02:24:00PM +0000, George Rosamond wrote:
>> Mark Saad:
>>> All
>>> I was looking tat replace a wildcard ssl cert on a commercial site and I was looking for options .
>>>
>> wildcard certs have security implications to them. Best to avoid.
>>
>
> Out of curiosity: any real-world reason not to do Let's Encrypt?
>
> I'm pondering writing a book on LE with acme.sh.
i'd be keen to get a copy of that! the devs i support loved your ssh
book, and i loved it b/c i didn't have to actually interact with humans :)
one issue i've had with let's encrypt is trying to use it on private
subdomains on AWS. iirc the system needs to have a public DNS entry as
well as access from the internet to work - i might be mistaken tho on
this...
-pete
--
Pete Wright
pete at nomadlogic.org
@nomadlogicLA
More information about the talk
mailing list