|
|
|
|
|
|
by xie_alan
3204 days ago
|
|
|
I'd be interested in reading that discussion if you have it handy. I've been looking into SSL recently for some personal sites and the easiest method has been a combination of GitHub pages / Cloudflare. I might be mistaken, but aren't EV certs just a cash grab by the issuing authorities? |
|
|
Sure. It was a discussion [0] of an article by Troy Hunt entitled "On the Perceived Value of EV Certs, Commercial CAs, Phishing and Let's Encrypt" [1].
(There have been a few other recent discussions [2,3] that also mentioned EV that you might be interested in.)
> I've been looking into SSL recently for some personal sites and the easiest method has been a combination of GitHub pages / Cloudflare.
That seems to be a pretty common setup (for "easy"), as well as static sites on AWS S3, etc.
Most of my sites run WordPress on my own (physical) servers so I can't personally comment on those methods.
> ...aren't EV certs just a cash grab by the issuing authorities?
That seems to be the popular opinion (at least here on HN), though I can understand the desire to use EV over DV in certain situations.
[0]: https://news.ycombinator.com/item?id=14805233
[1]: https://www.troyhunt.com/on-the-perceived-value-ev-certs-cas...
[2]: https://news.ycombinator.com/item?id=14749565
[3]: https://news.ycombinator.com/item?id=15221119