Hacker News new | past | comments | ask | show | jobs | submit login

There's plenty shared hosting provider that just have a free let's encrypt powered "https" toggle.

Eg tools like cPanel have built in support for it now.




Right -- so the security of a "Let's Encrypt" certificate is very minimal. It prevents MITM shenanigans and that's about it.


And spying/surveillance/analytics/snooping. That's not minimal. And you get all those benefits from checking a checkbox in cPanel and the rest is handled automatically? Who could be against that?!


What other shenanigans are you concerned about? MITM and sniffing are basically what https/tls are designed to prevent.


There's shenanigans like "grnail.com" pretending to be "gmail.com" which bigger and much more expensive certs prevent against. But the benefit of https that doesn't prevent against this is still very high




Join us for AI Startup School this June 16-17 in San Francisco!

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: