master_crab 3 days ago

I agree, Let’s encrypt and ACME played a massive role. But it’s still far easier having Cloudflare handle TLS encryption for you.

And i say this as someone who uses ACME in certmanager and certbot at home and still prefers the ease with which Cloudflare generates a cert for my domain and terminates TLS for the public side of my cloudflare tunnel.

Reply View 1 reply
  • Tostino 2 days ago

    For my home stuff I just use nginx-proxy-manager and haven't thought about it since I set it up a couple of years ago.

    For work, I used to use certbot directly at my old place. Now I am building my new stuff on k8s, and I have the ingress manage my certs for me (likely using certbot or similar behind the scenes). Both have been extremely low setup effort and no ongoing effort.

    I don't like giving Cloudflare my (or my companies/customers) data in exchange for being able to click a checkbox.

    Reply View 0 replies
spoiler a day ago

My bad! I slightly confused my timeline. CF offered free certs long before LE!

Reply View 0 replies
TiredOfLife 2 days ago

Lets Encrypt can proxy my old http only website to show as https? Without access to server configuration? How?

Reply View 6 replies
  • Tostino 2 days ago

    With nginx-proxy-manager which uses Let's Encrypt for certs you can... This isn't the gotcha you think it is.

    Reply View 5 replies
    • TiredOfLife 2 days ago

      I don't have access to the server.

      Reply View 4 replies
      • Tostino 2 days ago

        It can be run anywhere. You don't need it on the same server. Cloudflare isn't running on the same server either.

        Reply View 3 replies