Absolutely! Let's Encrypt sounds awesome, super-easy, and the price is right.
But I'm thinking of cases like Lavabit where a judge forced the site operator
to release the private key. Or the opposite - could a government restrict
access to a site by forcing the CA to revoke certificates? I
This is a good idea but a terrible implementation. I already need someone
else's approval (registrar) to run a website (unless I want visitors to
remember my IP addresses). NOW I will need ANOTHER someone to approve it as
well (the CA authority), (unless I want visitors to click around a bunch
2 matches
Mail list logo
