|
|
|
|
|
|
by nisegami
291 days ago
|
|
|
Every year is too infrequent to force automation, leading to admins forgetting to renew their certs.
Every minute/day may be too demanding on ACME providers and clutters transparency logs.
Dynamic certs just move the problem around because whatever is signing those certs just becomes the SSL cert in practice unless it happens over acme in which case see the point above. |
|
|