[lesostep]

The problem is that finding a root source of trust aren't easy this days. LE was neutral, now nobody is.

Russian government issued their new root certificate years ago.

Nobody trusted it enough to request a certificate from them or install it on their computers. Including almost all of the russian residents.

If Let's Encrypt enforces the rules, as written in pdf, a lot of people would lose a choice.

Frankly, even publishing a statement like that would make the scales of trust tip for some.

[LtWorf]

> Nobody trusted it

Let's be real here… 99.99999999999999% of internet users have no idea what root CAs even are. It's the browser vendor mafia that makes the decision.

[cpud36]

Force the people and then give them simple instructions to install certificate. And it's done.

Forcing is as easy, as blocking access to important services behind the certificate wall.

[lesostep]

>> 99.99999999999999% of internet users have no idea what root CAs even are

that would be like *checks math* less than a human aware of root CA? Can't be right.

anyway, people living in russia are statistically more aware. There was a campaign after new root CA was issued. It was on a news, on the official channels, in the mail and on the posters. A lot of government sites begged to install them whenever you visited.

It's not like they released it silently.