Like the TSA at the airport.

Security that we never needed before, but now suddenly we do.

Now we’re dependent on a third party gatekeeper for permission to have a web site.

Free, for now.

It’s a move by the weasels-that-be to turn the Internet into yet another tool for profit and control.

  • Shadow@lemmy.ca
    link
    fedilink
    arrow-up
    40
    arrow-down
    1
    ·
    9 months ago

    Letsencrypt certs are free dude. Https literally costs you nothing.

    • Dr_Satan@lemm.eeOP
      link
      fedilink
      arrow-up
      4
      arrow-down
      29
      ·
      9 months ago

      They’re free today. Maybe not tomorrow. But by then HTTP will have been “phased out” and asking the “security authority” for permission will have become common practice.

      • Shadow@lemmy.ca
        link
        fedilink
        arrow-up
        32
        arrow-down
        1
        ·
        9 months ago

        They’re a non profit backed by a ton of major internet players, it’s not going to happen. https://letsencrypt.org/about/

        What you’re talking about was already the situation before LE existed, we’re not going back to that. There’s other free providers now too.

        • z3rOR0ne@lemmy.ml
          link
          fedilink
          arrow-up
          1
          ·
          9 months ago

          Just out of curiosity, what other trusted certificate authorities are there that offer ssl certs for free and no strings attached other than letsencrypt?

        • Dr_Satan@lemm.eeOP
          link
          fedilink
          arrow-up
          5
          arrow-down
          13
          ·
          9 months ago

          Ok. That’s a good argument. I didn’t realize that the forces for good here were so strong in this.

          But frankly I’d rather not depend on them either.

          • towerful@programming.dev
            link
            fedilink
            arrow-up
            19
            arrow-down
            1
            ·
            9 months ago

            Well, self-sign your own certs and deal with the implications of not being a trusted root certificate authority