Comments on Thoughts on intermediate compatibile SSL with Let's Encrypt certificates

Many people have decided to implement Let's Encrypt into their production sites. I find this still a very bad idea to be done without being very (but really very) careful. Let's Encrypt brings you freedom but also limits you in using the certificate with SHA-256 RSA Encryption. Support for SHA-256 has improved over the last few years. Most browsers, platforms, mail clients and mobile devices already support SHA-256. However, some older operating systems such as Windows XP pre-SP3 do not support SHA-256 encryption. Many organizations will be able to convert to SHA-256 without running into user experience issues, and many may want to encourage users running older, less secure systems to upgrade. In this tutorial, we are going to deal with this incompatibility in a simple, but still nasty way.

2 Comment(s)

Add comment

Please register in our forum first to comment.

Comments

By: JOduMonT
Reply  

It will work with ISPConfig ?

By: Der PCFreak
Reply  

This HowTo does not show in any way "How to setup an intermediate compatible SSL website with Let's Encrypt certificate". Also the part at "Real complication" is doubled.

I think this is not a tutorial, this is only some writing about an opinion about "Let's Encrypt"