> In article <[email protected]> you write:
> >Agreed, but to be fair, there is a 500 domain per IP limit with Let's
> >Encrypt.
> >But 500 is a lot more than 80, and if you're servicing over 500 domains that
> >sounds like a fairly commercial enterprise to me, with all that implies.
> Hmmn. I do LE validation with DNS records. How do they even know what IPs
> the certs will be served on?
DNS validation still starts with a request from an ACME client. That's the IP
that matters. And as I have subsequently noted, I misread the text; the limit
only applies when creating an account for the first time, so it's actually
irrelevant.
>From what I can tell there is no limit that would prevent you from maintaining
as many domains as you want, even in the presence of a 2% valiation failure
rate - a rate which, if I had it, I would consider unacceptable and would
consider fixing it a top priority. And I'm speaking as someone who also uses
DNS validation for a bunch of domains on a Frontier DSL connection that doesn't
exactly deliver world-class performance or reliability.
Ned
_______________________________________________
Uta mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/uta
