Hacker News new | ask | show | jobs
by willemmerson 1950 days ago
LetsEncrypt certificates need to be updated every 2-3 months, so won't this code fail when the certificate on the server changes? Aren't you better off trusting the root cert(s) which don't change very often?
1 comments
refa 1950 days ago
You are right, however Let's Encrypt was free of charge, great for the demo.
link
theamk 1950 days ago
Wow, this is pretty evil!

This will work fine on the bench, but will break in a few months, probably at the customers' site.

I hope no one reads this website and follows that advice.

link
hamica 1950 days ago
It is not a production ready solution but rather to show how it works.
link