Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
kuschku
on Dec 17, 2019
|
parent
|
context
|
favorite
| on:
Still Why No HTTPS?
You can even just set NS records for _acme-challenge subdomain to your own DNS server.
And then have your acme client auth against that one.
No need for a new domain.
tyingq
on Dec 17, 2019
[–]
True, though running your own DNS server or paying for another DNS provider may be similar in effort or expense...as compared to a throwaway cheap TLD domain that comes with DNS.
kuschku
on Dec 17, 2019
|
parent
[–]
As it's a DNS server that only ever serves certificate validation requests, and doesn't need 100% uptime, a normal simple BIND or knot is good enough.
namibj
on Dec 17, 2019
|
root
|
parent
[–]
I'd expect it to be built in to certbot like serverauth.
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
And then have your acme client auth against that one.
No need for a new domain.