|
|
|
|
|
|
by cookiecaper
3444 days ago
|
|
|
The StartSSL CA is in the process of being blacklisted by major browser vendors because they issued a certificate for github.com to someone who clearly does not run github.com. [0] LetsEncrypt just barely left beta (also this summer) and I'll admit that I haven't investigated it thoroughly, but it appears that some widespread devices are still incompatible (also consider the versions that accept LetsEncrypt; some of those are fairly recent, like CM 10). [1] While some noble souls like LetsEncrypt have sought to remedy this rent-seeking behavior, it remains the fact that in most cases, a traditional CA is going to be required for a couple more years at least. [0]https://www.schrauger.com/the-story-of-how-wosign-gave-me-an... [1]https://letsencrypt.org/docs/certificate-compatibility/ |
|
|