I use it for a few sites I host, mostly for personal use.
With docker container that refreshes my certificate every month it was trivial to set up.
Opinions?
Better than nothing. Seriously the fact that you need to use a certificate when you only want an encrypted connection against mitm attacks (and not identity validation) is really shitty...
>>61310304
This so much.
I have one domain and many docker container running on different subdomains.
I like using this with auto generated certs:
https://github.com/jwilder/nginx-proxy
https://github.com/jwilder/docker-gen
https://github.com/JrCs/docker-letsencrypt-nginx-proxy-companion
i've been meaning to set up a docker container for auto refresh since my cert expires next month some day
although i only host a matrix server on it which only i use so maybe i should just skip it
>>61310304
?
What's your solution? Pre shared keys?
wtf are you doing with docker containers to refresh your certs? It's a single command you need to run, not an entire platform
I don't know why you'd use containers unless doing something with containers was the whole point of the project.
>>61310585
Not him but I think it's ridiculous that browsers treat self-signed certs as completely end-of-the-world untrusted. The kind of people who buy EV certs will still buy them and use key pinning to make sure no self-signed certs are accepted for them, but some dude with a blog shouldn't have to bother with a CA at all.