this post was submitted on 17 Apr 2025
200 points (98.1% liked)
Technology
69346 readers
3418 users here now
This is a most excellent place for technology news and articles.
Our Rules
- Follow the lemmy.world rules.
- Only tech related news or articles.
- Be excellent to each other!
- Mod approved content bots can post up to 10 articles per day.
- Threads asking for personal tech support may be deleted.
- Politics threads may be removed.
- No memes allowed as posts, OK to post as comments.
- Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
- Check for duplicates before posting, duplicates may be removed
- Accounts 7 days and younger will have their posts automatically removed.
Approved Bots
founded 2 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
If you're truly unaware of why TLS is necessary or how to automate the process then you should probably retire.
Archaic attitudes like yours are precisely why these restrictions are necessary.
Exactly. Setting up Let's Encrypt is really easy, and once it's set up, you don't have to think about it.
I did it for self-hosted stuff, and it's trivial. You can even do DNS challenge auth instead of HTTP and you don't need to have port 80 open at all, but you do need a login token for your DNS host for the script.
The first one will probably take an hour or two if it's your first time, and after that, it's maybe 5 min per site.
Not all DNS hosts support that. Webnames.ca, looking at you...
Also my workplace hosts their own dns and I think it will be a cold day in hell before they let me do automated updates.
Any DNS host that doesn't support automation either starts building now or goes out of business when short certs are implemented.