this post was submitted on 18 Nov 2024
974 points (99.6% liked)

Technology

60052 readers
2944 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 2 years ago
MODERATORS
 

Happy birthday to Let's Encrypt !

Huge thanks to everyone involved in making HTTPS available to everyone for free !

you are viewing a single comment's thread
view the rest of the comments
[–] zerozaku@lemmy.world 9 points 1 month ago (2 children)

Can anyone fill me on this? Why is it so significant?

[–] NikkiDimes@lemmy.world 39 points 1 month ago* (last edited 1 month ago) (1 children)

HTTPS certs used to be very expensive and technically complicated, making it out of reach for most smaller orgs. Let's Encrypt brought easy mass adoption and changed encryption availability on the web for everyone.

[–] dan@upvote.au 7 points 1 month ago* (last edited 1 month ago)

They also made it a open protocol (the ACME protocol), so now there's a bunch of certificate providers that implement the same protocol and thus can work with the same client apps (Certbot, acme.sh, etc). I know Sectigo and GoDaddy support ACME at least. So even if you don't use Let's Encrypt, you can still benefit from their work.

[–] EngineerGaming@feddit.nl 17 points 1 month ago (1 children)

It is the free, easy way to get an SSL cert (plus automated renewals). Without it, maybe HTTPS wouldn't have been so omnipresent.

[–] rottingleaf@lemmy.world 2 points 1 month ago

And it shouldn't have been, SSL PKI is an intentionally rigged architecture. It's intended for nation-states to be able to abuse it.

I'd like much more some kind of overlay encryption over HTTP based on web of trust and what not. Like those distributed imageboards people were trying to make with steganography in emotion.

It's a trap. Everybody is already in it and it has already been activated, so - the discussion would be of historical interest only.