Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

You can't use full ssl with let's encrypt, which is fundamentally incompatible with proxying.

But yes as I said it doesn't matter for a blog in practice.



You can't use full ssl with let's encrypt, which is fundamentally incompatible with producing.

I don't understand this statement, sorry.


Phone autocorrected :) I meant proxying.


Ah, ok. But how so? You can get a LE cert as long as you can serve a file in the correct URL, or set a certain DNS record. I don't see why proxying would prevent that.


Oh, of course. I was thinking of Let's Encrypt's DNS-based authentication since that's the only thing I use nowadays (though of course Github isn't using that). Ignore me.


It does work, I have a LE cert running behind cloudflare for Full SSL.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: