You’re not wrong.

But, looking ahead, we can do so much better than the commercial domain name system.

Commercial domain names are a gold standard example of artificial scarcity. A domain name registrar cost next to nothing to operate. It’s tiny rows of text in a database. It could easily be free to own your own domain name – a huge part of what constitutes identity – on the Internet.

In fact, a non-commercial service has been operational for 24 years. It would be trivial to regulate that browsers in the EU implement support for it and work together with, say, @letsencrypt to ensure it can handle TLS.

That would be an amazing addition to the commons and a future-proof way forward that we could lead on with next to no investment.

#domainNames #DNS #openNic #LetsEncrypt #EU #commons #internet #freedom #ICAAN

Bonne question! To my followers, is there a non American alternative to let’s encrypt? Cloudflare, but also American.

#buyamerican #boycottusa #elbowsup #notphp #letsencrypt #ssl mastodon.social/@manuelviens/1…

Wouldn't it be cool if #PrusaLink (the webinterface served by #Prusa printers) would provide a way to configure a custom camera stream URL?

You can easily hack the HTML to do it, but it's served as a single compressed HTML page. I proxy it with #nginx for SSL / #LetsEncrypt encryption - I don't think nginx could modify the served decompressed HTML? 🤔

@josefprusa @prusaslicer

#3dPrinting

I would call this a big success. A valid, trusted certificate, signed by Let's Encrypt, without ever exposing a single port to the public internet. Just what I needed. I can't believe how easy it is to do this with #Caddy. They weren't lying when they said you barely needed any configuration. What an incredible program!

#SelfHosted #SelfHosting #ReverseProxy #Jellyfin #LetsEncrypt

Self-hosted Status Page: How to Deploy #Cachet on #AlmaLinux VPS

This article provides a guide for creating a self-hosted Status Page, including how to deploy Cachet Status Page on #AlmaLinux VPS.
What is Cachet Status Page?

Cachet is an open-source status page system that allows organizations to communicate the status of their services to their customers or users in a ...
Keep reading 👉 blog.radwebhosting.com/self-ho… #letsencrypt #vpsguide #opensource #installguide #selfhosting #statuspage

Self-hosted Status Page: How To Deploy Cachet On AlmaLinux VPS - VPS Hosting Blog | Dedicated Servers |

This article provides a guide for creating a self-hosted Status Page, including how to deploy Cachet Status Page on AlmaLinux VPS.

^{Editorial Staff (RadWeb, LLC)}

800 lines of #nix later and I have successfully beefed up our #3dPrinting infrastructure at work @umphy with one #RaspberryPi 4:

· a gethomepage.dev landing page
· three fullHD webcams, one for each printer, with current filament visible
· a smart #Tasmota multiplug to remotely power off a printer in case of a problem/hangup
· 🐙 #OctoPrint for the Prusa MK3S, #PrusaLink by the #PrusaMINI​s
· 🔐 all password-protected and certs from #LetsEncrypt

#Prusa #NixOS

@Matthias @Linux Is Best
Hab eben mal nachgesehen... die Zertifikate für meinen Server kommen von #LetsEncrypt
Die sitzen in San Francisco... theoretisch müsste man schon so "weit unten" ansetzen bei der Alternativen-suche.

Da wirds dann natürlich schwierig... ich glaub, sehr sehr viele Dienste im Internet nutzen diese CA zur Zertifizierung.

My advise for #EU digital sovereignty project funding and subsidies:
- force ownership of #ICANN top level domains and a standalone EU hosted copy of root DNS servers
- give life to a European Public Key Certificate Authority for free certificates for everyone (a la #LetsEncrypt )
- Start a European public fork of #Mozilla #Firefox browser in pure #FOSS spirit without #ToS

Please be quick about it! #MoveMoveMove #DigitalSovereignty

Thought experiment:

@letsencrypt offers certificates to encrypt the traffic between a website & your browser.

They reside in the US & thus are subject to the judiciary system of the US.

What are the possible risks for websites outside the US, given the current unstable political situation & administration? What type of damage could an executive order do? How could this be mitigated?

Boosts appreciated.

#Politics #Security #GeoPolitics #Encryption #LetsEncrypt #CyberSecurity #Tech

Just blogged: Migrating off Microsoft Onedrive - alex.dandrea.io/2025/02/23/mig…

#onedrive #syncthing #immich #traefik #letsencrypt #linux

Migrating off Microsoft Onedrive

My blog, my thoughts, my learnings.

^{Today I learned…}

More supply chain thoughts.

Let's Encrypt is based in the United States.

#letsencrypt #supplychain #linux #freebsd #web #certificate #ssl #tls

For those who want a local (non-cloud) tool for checking TLS certificate expiration as a result of Let's Encrypt dropping support for expiration notices via email, here's a small shell script which will do it. It needs the OpenSSL command-line tool and an email sender (I use msmtp):

#!/bin/bash

MINIMUM_EXPIRY_DAYS={{ minimum_expiry_days }}
MINIMUM_EXPIRY=$((${MINIMUM_EXPIRY_DAYS} * 86400))

for cert in /etc/letsencrypt/live/*/cert.pem
do
echo Checking ${cert}
if openssl x509 -noout -in ${cert} -checkend ${MINIMUM_EXPIRY} > /dev/null
then
:
else
msmtp --read-envelope-from --read-recipients <<EOF
From: (sender address here)
To: (recipient address here)
Subject: Certificate Expiration Alert

${cert} will expire in fewer than ${MINIMUM_EXPIRY_DAYS} days.
EOF
fi
done

CC @letsencrypt @johns

#LetsEncrypt

Let’s Encrypt SSL certificate expiry warning emails

If you use Let's Encrypt to secure the traffic to your web server, mailserver or other situations where you need a SSL-encrypted data exchange, you are probably using the dehydrated script to manage those certificates to ensure that they will be renewed on time (Let's En

alien.slackbook.org/blog/lets-…

#Slackware #Software #alert #certificate #expiration #expiry #letsencrypt #script #ssl

#LetsEncrypt is ending expiration notice emails—for some very good reasons

arstechnica.com/gadgets/2025/0…

#privacy #cybersecurity

Let’s Encrypt is ending expiration notice emails—for some very good reasons

To save money and protect privacy, the successful service won’t bug you.

^{Kevin Purdy (Ars Technica)}

New Kitten release

• Upgrades to version 5.3.1 of @small-tech/https¹ which has version 4.1.2 of Auto Encrypt² that l removes OCSP stapling (because Let’s Encrypt has removed OCSP support).

Please upgrade your Kitten as soon as possible or any new Kitten servers you try to set up will fail and any certificate renewals for existing servers will start to fail in May.

kitten.small-web.org

(To upgrade, run `kitten update`. Your production servers will update automatically.)

Enjoy!

💕

¹ npmjs.com/package/@small-tech/…
² npmjs.com/package/@small-tech/…

#Kitten #SmallWeb #SmallTech #web #dev #TLS #HTTPS #AutoEncrypt #NodeJS #JavaScript #OCSP #LetsEncrypt

@small-tech/auto-encrypt

Automatically provisions and renews Let’s Encrypt TLS certificates on Node.js https servers (including Kitten, Polka, Express.js, etc.). Latest version: 4.1.1, last published: 3 minutes ago.

^npm

Auto Encrypt version 4.1.1 released

Fixed:

• User agent string now includes the correct Auto Encrypt version (and the name fragment “auto-encrypt” instead of “acme”).

• Tests now send `Connection: close` header so they’re not tripped up by the default `keep-alive` introduced in Node 19.

npmjs.com/package/@small-tech/…

#SmallWeb #SmallTech #AutoEncrypt #LetsEncrypt #TLS #SSL #HTTPS #NodeJS #JavaScript #servers #web #dev #FOSS

@small-tech/auto-encrypt

Automatically provisions and renews Let’s Encrypt TLS certificates on Node.js https servers (including Kitten, Polka, Express.js, etc.). Latest version: 4.1.1, last published: 3 minutes ago.

^npm

Let's Encrypt Is Ending Expiration Notice Emails

#LetsEncrypt #Certificates #CostSaving #PrivacyConcern #TrackSSL

tech.slashdot.org/story/25/02/…

Let's Encrypt Is Ending Expiration Notice Emails - Slashdot

Let's Encrypt will stop sending expiration notice emails for its free HTTPS certificates starting June 4, 2025. From the report: Let's Encrypt is ending automated emails for four stated reasons, and all of them are pretty sensible.

^{tech.slashdot.org}

I wondered why #LetsEncrypt announced it was ending email notifications. Turns out if you don’t need to email people you don’t need to retain their email address. So this is a good thing.

arstechnica.com/gadgets/2025/0…

Let’s Encrypt is ending expiration notice emails—for some very good reasons

To save money and protect privacy, the successful service won’t bug you.

^{Kevin Purdy (Ars Technica)}

New 6-days Validity of Let’s Encrypt Certificates

I just saw this great news: Let’s Encrypt Announces 6-day Validity Certificates

Let’s Encrypt, the non-profit certificate authority, has introduced six-day validity certificates, commonly referred to as short-lived certificates.

Shorter validity periods are great for security. Traditional certificates can last up to a year, meaning if they get compromised, they remain a threat for a long […]

locked.de/new-6-days-validity-…
#Certificates #LetsEncrypt #Security

New 6-days Validity of Let's Encrypt Certificates

I just saw this great news: Let's Encrypt Announces 6-day Validity Certificates Let’s Encrypt, the non-profit certificate authority, has introduced six-day validity certificates, commonly referred to as short-lived certificates.

^{The IT Blog}

#enshittification: Let's Encrypt will stop sending renewal alerts by email and instead recommends to use a paying service.

letsencrypt.org/2025/01/22/end…

#letsencrypt

Ending Support for Expiration Notification Emails

Since its inception, Let’s Encrypt has been sending expiration notification emails to subscribers that have provided an email address to us. We will be ending this service on June 4, 2025.

^{letsencrypt.org}

I received a notice that #letsencrypt will cease sending email notices for expiring certificates, so I'm configuring my #RunZero instance to display upcoming expirations on the dashboard.

While doing this, I discovered that my #chromecast is pulling down certificates with a 48 hour TTL. Looks like #Google is getting serious about shortening #TLS certificate lifespans.

Let’s Encrypt intends to discontinue sending expiration notification emails

letsencrypt.org/2025/01/22/End…

#letsencrypt #selfhost #selfhosting #selfhosted

Ending Support for Expiration Notification Emails

Since its inception, Let’s Encrypt has been sending expiration notification emails to subscribers that have provided an email address to us. We will be ending this service on June 4, 2025.

^{letsencrypt.org}

Letsencrypt will stop informing about expiring certificates

See letsencrypt.org/2025/01/22/end…
I can understand this.
Monitoring is a thing, especially with #Zabbix 😉

#LetsEncrypt

Ending Support for Expiration Notification Emails

Since its inception, Let’s Encrypt has been sending expiration notification emails to subscribers that have provided an email address to us. We will be ending this service on June 4, 2025.

^{letsencrypt.org}

Let's Encrypt ending support for expiration notification emails

#certificates #ssl #mail #email #letsencrypt #notifications #selfhosting #selfhosted

letsencrypt.org/2025/01/22/end…

Ending Support for Expiration Notification Emails

Since its inception, Let’s Encrypt has been sending expiration notification emails to subscribers that have provided an email address to us. We will be ending this service on June 4, 2025.

^{letsencrypt.org}

it's probably related to this talk by Aaron Gable, from #letsencrypt :

"How To Revoke And Replace 400 Million Certificates Without Breaking The Internet"

passthesalt.ubicast.tv/videos/…

How To Revoke And Replace 400 Million Certificates Without Breaking The Internet

^{Pass the SALT Archives}