[CentOS] https and self signed
Warren Young
wyml at etr-usa.com
Wed Jun 15 14:17:48 UTC 2016
On Jun 15, 2016, at 7:57 AM, Александр Кириллов <nevis2us at infoline.su> wrote:
>
> Nowadays it's quite easy to get normal ssl certificates for free. E.g.
>
> http://www.startssl.com
> http://buy.wosign.com/free
Today, I would prefer Let’s Encrypt:
https://letsencrypt.org/
It is philosophically aligned with the open source software world, rather than act as bait for a company that would prefer to sell you a cert instead.
I’m only aware of one case where you absolutely cannot use Let’s Encrypt, but it also affects the other public CAs: you can’t get a publicly-trusted cert for a machine without a publicly-recognized and -visible domain name. For that, you still need to use self-signed certs or certs signed by a private CA.
More information about the CentOS
mailing list