• RegalPotoo@lemmy.world
    link
    fedilink
    English
    arrow-up
    13
    ·
    2 kuukautta sitten

    It’s not the issuance that’s the headache, it’s the installation. There are more things that need valid certs than just webservers

    • InverseParallax@lemmy.world
      link
      fedilink
      English
      arrow-up
      5
      arrow-down
      13
      ·
      2 kuukautta sitten

      Certbot is basically automatic, think mines on a cronjob now.

      Who actually does this shit manually?

      • wizardbeard@lemmy.dbzer0.com
        link
        fedilink
        English
        arrow-up
        22
        ·
        2 kuukautta sitten

        Any number of numerous appliances and hideously malformed business systems that don’t have ways to automate cert changes.

        Not everyone gets to work in their simple little world of standards-following lab servers.

      • Terrasque@infosec.pub
        link
        fedilink
        English
        arrow-up
        10
        ·
        2 kuukautta sitten

        This has a lot of “I can use the bus perfectly fine for my needs, so we should outlaw cars” energy to it.

        There are several systems, like firewalls , switches, routers, proprietary systems and so on that only has a manual process for updating, that can’t be easily automated.

          • Terrasque@infosec.pub
            link
            fedilink
            English
            arrow-up
            5
            ·
            2 kuukautta sitten

            Hah. Snake oil vendors will still sell snake oil, CEO will still be dazzled by fancy dinners and fast talking salesmen, and IT will still be tasked with keeping the crap running.