- cross-posted to:
- webdev@programming.dev
- cross-posted to:
- webdev@programming.dev
I think it’s a good idea, everyone should be automating this anyway.
You must log in or # to comment.
I manage all my certs using Cert Warden which has a dashboard that displays the expiry date. It does lack alerting, so I use Uptime-kuma to monitor the expiry dates of the certs. So not a big loss for me.
TIL Cert Warden is a thing. Looks awesome!
I think it’s a good idea, everyone should be automating this anyway.
This is still not possible in all scenarios. For example, wildcard certificates for DNS providers with no API support.
Then swap you nameservers to a DNS provider that allows that?
There are a lot of embedded systems that do not offer API support to swap out certificates. Things like switches, dvr, nas devices, etc.
How are those devices affected by having no notification anymore? The manual labor exists anyway.
Most network switches and devices have a web gui to switch them out. Those can be automated.
I just wish I wouldn’t have to renew certs so often.
If Apple gets their way, you’ll be renewing every month:
Fuck Apple and Microshit
Mine just auto renews anyway
I think thats the case for most of us. But for some like myself, it does mean I have to do the monitoring myself now. I can’t complain it was a free service. But it did warn me about a renewal problem before the cert expired, so it was a useful service for me.
Just use certbot and cron.
Dietpi has an automatic letsencrypt recert service which could probably be ported since its just a whiptail script
PSA: If you use Cloudflare to proxy, you can get a free decade long certificate and not worry about it for awhile.
emails
\sigh
