New free SSL initiative

[Me.B]

SSL basic certs are a big scam.. they make a lot of money selling hype & thin air.

Only to say you are trusted. And few users would see the difference between a 10$ cert and 1000$ EV cert....

[apinto]

Even if they do not do the same kind of check (that I believe they do, if not even better than some paid), SSL per-se is good enough.

[Me.B]

The main problem setting SSL is easy, they problem is the TRUST. While most of users here need SSL for encryption and not validating who's on the other side and they are cashing on that.

M B

[TGates]

Yep, if this thing goes through and works, a lot of SSL registrars are going to start losing a lot of money LOL

[apinto]

Well some certificates are just a blantant ripoff... anyways

[Ron-e]

General availability: Week of September 14, 2015

So this isn't an open beta jet but a closed beta.. 
The open beta starts on 3 December (link)

Let’s Encrypt will enter Public Beta on December 3, 2015.

But you can sign up for an invitation here.

[Ron-e]

Anyone who has tried this now it's in open beta?

[TGates]

Was thinking about checking into it today if I have some time to spare

[TGates]

Started looking into it and still reading. https://letsencrypt.readthedocs.org/en/l...intro.html

It's interesting how they go about installing it. I am not sure HOW this will work with Sentora. So far it looks like you install their software on your server and from there is takes over and controls the entire process. Therefore, it makes custom changes to the current config and would not need to be added through Sentora.

The Apache plugin currently requires a Debian-based OS with augeas version 1.0; this includes Ubuntu 12.04+ and Debian 7+.

On RedHat/CentOS 6 you will need to enable the EPEL repository before install.

Let’s Encrypt CA issues short lived certificates (90 days). Make sure you renew the certificates at least once in 3 months.

Again, still reading...

[jacobg830]

It may not work using the fully automated method with Sentora or Nginx.

The webroot installation method at https://letsencrypt.readthedocs.org/en/l...ml#webroot is probably best as it does not interfere with your config files or stop your current web server. You just need to find the location of your site's public folder, and run it with the path and domain to get your cert. Configure Apache by pointing your SSL settings in your vhost config to the relevent certificate files which are stored in /etc/letsencrypt/live and restart Apache.

Certificates can be renewed automatically with a cronjob (the same command you use to issue the certificate plus restarting Apache).

Starting to add SSL to my sites now and it appears to be working great