This is pointless burdening of small actors by big actors. On top of lets encrypt losing funding from the US government, it could easily collapse from strain like this. And then where are we? Back to the bad old days of very expensive certificates which will be even more-so with such a short validity period.
Big tech doesn’t care, they never cared about your small site being encrypted against NSA spying or MITM by bad actors, they want everyone in their walled gardens and for people to spend as little time as possible outside of places like Facebook. Google will de-rank sites don’t implement encryption and if the costs for that go from free to quite expensive that pushes the free parts of the web like small forums, blogs, fediverse etc even further to the margins.
Self-hosters who do things like hosting their own Jellyfin instance who require their own certs now have more renewals, more chances something breaks and if things like this push Let’s Encrypt under then that $5 porkbun domain you have for yourself and family is going to be $69 next year if you want to encrypt the traffic of all your linux isos being streamed.
Better revocation processes and standards for browsers and apps to fetch and download revocation lists in a timely manner are needed, not this.
This kind of frequency creates an incentive to set and forget automated processes and pay less attention to everything happening so when things break or security fails it’s catastrophic and not noticed.
This is pointless burdening of small actors by big actors. On top of lets encrypt losing funding from the US government, it could easily collapse from strain like this. And then where are we? Back to the bad old days of very expensive certificates which will be even more-so with such a short validity period.
Big tech doesn’t care, they never cared about your small site being encrypted against NSA spying or MITM by bad actors, they want everyone in their walled gardens and for people to spend as little time as possible outside of places like Facebook. Google will de-rank sites don’t implement encryption and if the costs for that go from free to quite expensive that pushes the free parts of the web like small forums, blogs, fediverse etc even further to the margins.
Self-hosters who do things like hosting their own Jellyfin instance who require their own certs now have more renewals, more chances something breaks and if things like this push Let’s Encrypt under then that $5 porkbun domain you have for yourself and family is going to be $69 next year if you want to encrypt the traffic of all your linux isos being streamed.
Better revocation processes and standards for browsers and apps to fetch and download revocation lists in a timely manner are needed, not this.
This kind of frequency creates an incentive to set and forget automated processes and pay less attention to everything happening so when things break or security fails it’s catastrophic and not noticed.