Quoting Andrew McGlashan (andrew.mcglashan@affinityvision.com.au):
letsencrypt perhaps? It works very well.
It (https://letsencrypt.org/, a recently invented, automated, no-charge CA) solves the one specific problem it set out to solve, well. And it's commendably well intended & benevolent. But, IMO, the entire CA model is unfixably broken, _so_ Let's Encrypt is a benign attempt to prop up a hopelessly bad CA framework that needs to just die. For details, rather than my recapping the conversation I had about Let's Encrypt just this past month, please see: http://linuxmafia.com/pipermail/conspire/2016-March/008389.html Further downthread discussion: http://linuxmafia.com/pipermail/conspire/2016-March/008390.html http://linuxmafia.com/pipermail/conspire/2016-March/008391.html http://linuxmafia.com/pipermail/conspire/2016-March/008392.html -- Cheers, "My life has a superb cast, Rick Moen but I cannot figure out the plot." rick@linuxmafia.com -- Ashleigh Brilliant McQ! (4x80)