**Roger Comply** @rogercomply@mstdn.paranoidpengu.in · 2019-01-24T18:36:54Z

Roger Comply @rogercomply@mstdn.paranoidpengu.in

Roger Comply @rogercomply@mstdn.paranoidpengu.in

A salesperson from a commercial SSL provider recently contacted me to learn why I had stopped renewing certificates with them, so I let him know that I had decided to go with Let's Encrypt instead.

Upon learning this, the guy felt compelled to tell me that #letsencrypt had a bad track record and should not be used for e-commerce.

Good times!

Jan 24, 2019, 18:36 · · ·

**Tima T.** @teteatmastodon@mastodon.at · Feb 02, 2019, 15:01

**Tima T.** @teteatmastodon@mastodon.at · Feb 02, 2019, 15:01

Feb 02, 2019, 15:01

Tima T. @teteatmastodon@mastodon.at

@rogercomply
Did he show that track record to you?

**Roger Comply** @rogercomply@mstdn.paranoidpengu.in · Feb 02, 2019, 21:47

**Roger Comply** @rogercomply@mstdn.paranoidpengu.in · Feb 02, 2019, 21:47

Feb 02, 2019, 21:47

Roger Comply @rogercomply@mstdn.paranoidpengu.in

@teteatmastodon No, he was probably referring to Let's Encrypt issuing certificates like paypal.com.scamsite.net.

**Tima T.** @teteatmastodon@mastodon.at · Feb 03, 2019, 01:57

**Tima T.** @teteatmastodon@mastodon.at · Feb 03, 2019, 01:57

Feb 03, 2019, 01:57

Tima T. @teteatmastodon@mastodon.at

@rogercomply
aah. If I got it right that CA you mentioned is more strict when choosing people they give certs to, and that guy said that Let's Encrypt is worse because it's more open, right?

**Roger Comply** @rogercomply@mstdn.paranoidpengu.in · Feb 03, 2019, 14:31

**Roger Comply** @rogercomply@mstdn.paranoidpengu.in · Feb 03, 2019, 14:31

Feb 03, 2019, 14:31

Roger Comply @rogercomply@mstdn.paranoidpengu.in

@teteatmastodon Yeah, that's pretty much the gist of it.

Resources

Developers

What is Mastodon?

mstdn.paranoidpengu.in

More…