PSA: LetsEncrypt ending expiration notification emails
-
corsicanguppy@lemmy.careplied to Guest 29 days ago last edited by
emails
\sigh
-
wildbus8979@sh.itjust.worksreplied to Guest 29 days ago last edited by
I'm good. LE is far more practical for 99% of use cases, even internally.
-
superglue@lemmy.dbzer0.comreplied to Guest 29 days ago last edited by
I think thats the case for most of us. But for some like myself, it does mean I have to do the monitoring myself now. I can't complain it was a free service. But it did warn me about a renewal problem before the cert expired, so it was a useful service for me.
-
justcallmelarry@lemmy.dbzer0.comreplied to Guest 29 days ago last edited by
Not yelling, but pointing out, to people who also dont math, that if we assume $10 per 10k emails (or $1 per 1k, for simpler math), that’d be $84 for 84000 emails in a month, so you need to add another 0 to the figure (ie 840k emails in a month)
-
illecors@lemmy.cafereplied to Guest 29 days ago last edited by
Whole path has to be accessible, not just the file itself. All dirs above the file need to have the executable bit set that affects the user accessing the file.
-
scrubbles@poptalk.scrubbles.techreplied to Guest 29 days ago last edited by
So sendgrid checking does 2.5M emails a month for $90/month, and if call them the Cadillac provider. More than that you have to contact sales, so I'm still wondering how it's that expensive to them
-
forbiddenlake@lemmy.worldreplied to Guest 29 days ago last edited by
You could use a reverse proxy to terminate tls, and take the tls off of ad guard itself.
-
lightnegative@lemmy.worldreplied to Guest 29 days ago last edited by
TIL Cert Warden is a thing. Looks awesome!
-
shortn0te@lemmy.mlreplied to Guest 29 days ago last edited by
How are those devices affected by having no notification anymore? The manual labor exists anyway.
Most network switches and devices have a web gui to switch them out. Those can be automated.
-
kokesh@lemmy.worldreplied to Guest 29 days ago last edited by
I know, but for some reason Adguard can read the fullchain, not privkey. Now it works.
-
jagged_circle@feddit.nlreplied to Guest 28 days ago last edited by
Its done for better security
-
_cryptagion@lemmy.dbzer0.comreplied to Guest 28 days ago last edited by
PSA: If you use Cloudflare to proxy, you can get a free decade long certificate and not worry about it for awhile.
-
hash@slrpnk.netreplied to Guest 28 days ago last edited by
Oh, look: the NSA dangling a carrot on a line.
-
_cryptagion@lemmy.dbzer0.comreplied to Guest 28 days ago last edited by
Hey, if you wanna put your home server out there so the first person who gets pissy at you can DDoS you off the net until your ISP decides to cancel your service, that's a perfectly acceptable decision to make for yourself.
-
cupcakezealot@lemmy.blahaj.zonereplied to Guest 28 days ago last edited by
Just use certbot and cron.
-
merthyr1831@lemmy.mlreplied to Guest 16 days ago last edited by
Dietpi has an automatic letsencrypt recert service which could probably be ported since its just a whiptail script
