• lud@lemm.ee
      link
      fedilink
      English
      arrow-up
      0
      ·
      edit-2
      19 days ago

      I was in a meeting before the summer discussing this with Digicert we asked if you would need to pay every 90 days.

      They answered that certs will still be bought at 1, 2, or 3 year intervals but can be renewed for free every 90 days.

      It’s pretty obvious when you think about it really.

    • pixely@lemmy.world
      link
      fedilink
      English
      arrow-up
      0
      ·
      20 days ago

      Who is buying SSL certs for $300? Is this an enterprise thing? I’m using free certs on AWS. LetsEncrypt is also fine for self-hosting.

      • Evotech@lemmy.world
        link
        fedilink
        English
        arrow-up
        0
        ·
        19 days ago

        It’s way more than 300 if you want all the bells and whistles and many SANs even

          • kn33@lemmy.world
            link
            fedilink
            English
            arrow-up
            0
            ·
            19 days ago

            It’s more of an issue when it’s every 90 days. Even worse is the labor cost to replace the certificate on everything that needs it every 90 days.

            • pixely@lemmy.world
              link
              fedilink
              English
              arrow-up
              0
              ·
              18 days ago

              Are these genuinely being hand rolled in an enterprise environment? Unless it’s completely impossible to automate then I can’t be sympathetic to companies that are just doing it wrong.

              • kn33@lemmy.world
                link
                fedilink
                English
                arrow-up
                0
                ·
                18 days ago

                There’s lots of equipment that can’t accept certificates automatically. If they can, it might be in a closed off way that’s difficult to impossible to reverse engineer. If you can, that’s still a lot of skill and labor, which drives up the cost. They also might find out that it would be insecure to do it automatically.