On Tue, 2025-05-27 at 19:59 +0930, Tim via users wrote: > > If you have it all fully automated, it shouldn't hurt to use > > the shorter lifetime, but for the purposes being discussed > > here, it _seems_ like a moot point. > > I'm not sure I believe in their automation ideas, at all (having read > further into their website). > > If someone managed to hack into my (externally hosted) website and take > it over, it'd continue updating the certificate under their control. > But if I had to be the one updating the certificate, it wouldn't get > automatically updated in my absence.
I'd say that if someone penetrates your website, you have worse problems than certificate renewal. poc -- _______________________________________________ users mailing list -- [email protected] To unsubscribe send an email to [email protected] Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/[email protected] Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
