|
|
|
|
|
|
by yjftsjthsd-h
296 days ago
|
|
|
> Why wouldn't you go with a week or a day? isn't that better than a whole month? There is in fact work on making this an option: https://letsencrypt.org/2025/02/20/first-short-lived-cert-is... > Why isn't it instead just a minute? or a few seconds? Wouldn't that be better? > Why not have certificates dynamically generated constantly and have it so every single request is serviced by a new one and then destroyed after the session is over? Eventually the overhead actually does start to matter > Maybe the problem isn't that certificates expire too soon, maybe the problem is that humans are lazy. Perhaps it's time to go with another method entirely. Like what? |
|
|