|
|
|
|
|
|
by thayne
1218 days ago
|
|
|
> It is also not good for internal networks where you can not valid out to something like lets encrypt to automate that validation process, sure you could do your own internal PKI and run your own CA for that but...... Or you can set up certbot or similar on a public facing server (or something that can add DNS records to for your domain), and use a secure channel to send the private keys to the things that need it. I would like to see more of a push to make setting up an internal CA a lot easier though. Because that is probably most correct way to handle that. |
|
|