[joshmoz]

Let's Encrypt / ISRG ED here.

The official client is intended to have a simple mode as well as a "full-service" mode. That said, our client is never going to be ideal for everyone. We'd be happy to see others create clients that work well for them!

We'd also like to see support for Let's Encrypt built in to servers, so a separate client isn't necessary. That would really allow for the best, most seamless user experience.

[9point6]

What was the thinking behind the decision to require the tool to run a server on port 80, It's not unmanageable, but having to kill my web server to get new certs seems an odd decision to make.

[jlgaddis]

Using port 80 requires root access to the host, which was intended to prevent (unprivileged) users on a shared web host from running this tool.

[hsivonen]

Is there an ETA for getting built-in ACME clients into nginx and Apache?

[AndyMcConachie]

Are there any plans to DNSSEC sign the letsencrypt.org zone?