Am 03.06.19 um 08:10 schrieb Lester Caine: > On 03/06/2019 01:08, Colin O'Dell wrote: >> It seems the certificate for wiki.php.net <http://wiki.php.net> has >> expired: https://www.ssllabs.com/ssltest/analyze.html?d=wiki.php.net > > Try again ... Cert was renewed on Fri, 24 May 2019 for *.php.net > I'm getting an A+ rating > >> Due to HSTS, most people won't be able to easily access the site until >> the certificate is renewed. > > Simply a money grabbing exercise ... how come ISP's are still pushing > £200 a year certificates and this is not helped by ssllabs.com only > rating LetsEncrypt certificates as 'B'! So who do you 'trust' today?
The encryption functionality is the same for Let's encrypt and any other CA. But Let's Encrypt "Only" gives you the trust that the domain exists and the person requesting the certificate also has access to the server. But that's it. No validation whether the org actually is the one they claim to be etc. After all appⅼe.com and apple.com might not be the same... So the 200$ are not for the encryption but for the trust. And if it's only the trust that someone not only has access to the server but is also willing to pay 200 bucks for the cert... ;-) -- ,,, (o o) +---------------------------------------------------------ooO-(_)-Ooo-+ | Andreas Heigl | | mailto:andr...@heigl.org N 50°22'59.5" E 08°23'58" | | http://andreas.heigl.org http://hei.gl/wiFKy7 | +---------------------------------------------------------------------+ | http://hei.gl/root-ca | +---------------------------------------------------------------------+
signature.asc
Description: OpenPGP digital signature