[iso1210]

Pointing out the issues of a single point of failure for the internet?

[francislavoie]

Caddy mitigates this by falling back to ZeroSSL if it couldn't issue a cert from LE: https://caddyserver.com/docs/automatic-https#errors

[beermonster]

The keys to the kingdom are ever more being placed in the hands of relatively few internet custodians. Figuratively here of course, since the private keys are generated locally and never transmitted to LE.

[Chilinot]

Is it really a single point of failure though? Certificates are renewed well in advance, and there are several free alternatives with ACME support to LetsEncrypt today.

Switching to a new provider in case LetsEncrypt goes down is as simple as updating your scripts.

[iso1210]

A large number of sites use LE, and only LE.

Perhaps this move will mean people actually update their scripts and get it working on another system

[gsich]

Why? If you only renew at the last day you will run into troubles independently of Lets Encrypt.

[gsich]

Buypass, ZeroSSL also provide free certificates with ACME.