• whatiswrongwithyou@lemmy.ml
    8·
    1 day ago

    We made it so everyone has to use short term rolling certificates that expire super quickly… for security!

    You’ll never guess what happened next!

  • ☂️-@lemmy.ml
    112·
    1 day ago

    effectively making it useless by doing whatever is the fascist bidding.

    • Arthur Besse@lemmy.mlOPEnglish
      53·
      1 day ago

      effectively making it useless

      do you know what Let’s Encrypt is? it is very far from useless; the system it is a part of is very flawed but it’s how the web works currently and US sanctions restricting access to it is absurd.

      • ☂️-@lemmy.ml
        101·
        1 day ago

        yup. i’ve used their services, but there is no point if they can sanction what probably amounts to half the world off of it.

        • Arthur Besse@lemmy.mlOPEnglish
          7·
          1 day ago

          I don’t follow how a useful thing becomes “useless” or “no point” just because millions of people are unjustly denied access to it.

          Fwiw Let’s Encrypt was just the first but isn’t actually the only free ACME provider anymore; acme.sh has a list of other providers in its readme and there is another list here. Actalis is Italian apparently; unfortunately I think the rest might be ultimately US-based (ZeroSSL says it’s Austrian but it’s owned by a US company).

          It would be nice if some more independent country (eg, China) who already has one or more CAs trusted by all major browsers would step up and start offering free certs to the world.

          It’s worth noting that HTTPS is needed not only for its confidentiality and authenticity properties, but also is required by browsers for pages to be allowed to use modern features like WebRTC (needed to have a voice or video call from a web page).