2. 程式人生 > >Ask HN: Is there any real value to a company in SSL beyond Let's Encrypt?

Ask HN: Is there any real value to a company in SSL beyond Let's Encrypt?

阿新 發佈:2018-12-28
I think few users know or care what certification authorities (CAs) signed the certificates of the websites they visit. Using a public CA other than Let’s Encrypt can be valuable, however, in situations such as these:

- You want a certificate with a lifetime longer than Let’s Encrypt’s limit of 90 days, which might be convenient if you need to install it on a server or device that doesn’t support automatic renewals with the ACME protocol.

- You want a certificate for a domain name that Let’s Encrypt wouldn’t be able to validate automatically, such as one not used actively on the public Internet.

- You are required by law or contract to include a validated organization name, locality, etc., in the certificate, or to use a certificate that meets some other standard that Let’s Encrypt’s don’t.

- You want more control over certificate issuance than Let’s Encrypt provides. For example, an organization might arrange with its chosen CA to require specific validation procedures, such as approval by a designated employee, and then publish CAA records in DNS instructing all other CAs not to issue certificates for its domains.

相關推薦

Ask HN: Is there any real value to a company in SSL beyond Let's Encrypt?

I think few users know or care what certification authorities (CAs) signed the certificates of the websites they visit. Using a public CA other than Let’s

Ask HN: Is there any automatic cutoff to apply YC?

Like,- Some founders have an obligation during YC, so they cannot go to SF- Some founders doesn't own 10% stocks

Ask HN: Is there any evidence in favor of or against ketogenic diet?

On the contrary, I think you're being precisely the right amount of skeptical.I'm no expert, either. I've read some of the relevant literature when able, a

Ask HN: Is there an ultimate guide to healthy food diet?

Can you cite anything? I cited something that demonstrates the uncertainty and explains why it exists (difficulty of studying it, extreme variation among i

Ask HN: Is there any way an app can listen conversations secretly and show ads?

I am a person who is pretty aware of what i search what i type.I had few instances that i heard an ad on radio and chat with my wife or my friends and some

Ask HN: Are there any alternatives to Google AutoML?

I’m specifically referring to a system that will do neural architecture search to pick the optimal neural architecture for you.

Ask HN: Is there a good alternative to software registration keys?

Take a 24-bit key, for ease of example. Split it into three 8-bit sub keys. Make a list of 256 english words. Assign a word to each subkey.1101 1000 = chai

Ask HN: Is there a modern “power on to basic” computer, for kids to learn on?

Somewhat affluent kids maybe. As a preteen in the 90s I had an uncle's hand-me-down 80s console (NES) with like two cartridges and 80s computer with a few

Ask HN: Is there an Open source alternative to AutoML?

Is there an open source, transparent tool like Google AutoML that allows us to use NAS to build interesting and well performing neural networks?Would this

Ask HN: Is there a more economical way to do ingress on GKE?

I am currently using the gke loadbalancer, and it is quite frustrating to see my burn rate for ingress nearly match my compute burn, just for two static si

Ask HN: Is there a free alternative to Metasploit?

I'm not afraid to get my hands dirty with C/C++ but that's quite a challenge because I usually write in C# and JavaScript. Working with memory and call sta

Ask HN: Is there a better way to document complex software architectures?

Well, you need to use an architecture modelling tool to work [efficiently] with architecture models.Here are some I know of:Sparx’s Enterprice ArchitectNoM

Ask HN: Are there any languages/compilers that optimize at this level?

As you might know, if you wanted to grab the lowest entry from a list, lst.sort().first() is extremely inefficient compared to lst.select(1). Grabbing the

Ask HN: Is there a Google for searching website source code?

If a website was referencing a JS file at https://evil.com/keylog.js, how could I see how many other sites this is embedded in?

Ask HN: Is there a programming language for biology?

Specifically wondering about a high level abstraction that can generate specific lower level genetic circuits and maps.

Ask HN: Is it common for programmers to use code without license or attribution?

My understanding is there are open source or otherwise free code to use, and there is also code that is not licensed for use. Is it common to see the latte

Ask HN: Are there any open source MBA curricula?

There are plenty of open source Computer Science curricula out there. Are there any similar open source curricula for business / management folks - someth

Ask HN: Is there a hire by “values match” site?

some of my values are inherently qualitative, so I would expect ask for examples (which are not ancedotal).For example,- Provide written plans for the last

Ask HN: Is there a Comma.ai but for health?

I made something in this vein last year. My idea was to create a simple open src db that natively exported time series vectors, one hot encodings and so on

Ask HN: Is there a OneNote file parser? Or an equivalent opensource note format?

How does OneNote file format work? Is there a parser for it? Looking at the wiki page for onenote: https://en.wikipedia.org/wiki/Microsoft_OneNoteIt says