From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <gentoo-user+bounces-196111-garchives=archives.gentoo.org@lists.gentoo.org>
Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by finch.gentoo.org (Postfix) with ESMTPS id B5F461382C5
	for <garchives@archives.gentoo.org>; Tue,  1 Jun 2021 13:17:40 +0000 (UTC)
Received: from pigeon.gentoo.org (localhost [127.0.0.1])
	by pigeon.gentoo.org (Postfix) with SMTP id 63344E07FA;
	Tue,  1 Jun 2021 13:17:35 +0000 (UTC)
Received: from turkos.aspodata.se (turkos.aspodata.se [185.140.117.226])
	by pigeon.gentoo.org (Postfix) with ESMTP id DF254E07AE
	for <gentoo-user@lists.gentoo.org>; Tue,  1 Jun 2021 13:17:34 +0000 (UTC)
Received: from turkos.aspodata.se (localhost.aspodata.se [127.0.0.1])
	by turkos.aspodata.se (Postfix) with ESMTP id 3FA4682B8F88
	for <gentoo-user@lists.gentoo.org>; Tue,  1 Jun 2021 15:17:33 +0200 (CEST)
Received: by turkos.aspodata.se (Postfix, from userid 1000)
	id 244B982B8F89; Tue,  1 Jun 2021 15:17:33 +0200 (CEST)
X-Mailer: exmh version 2.8.0 04/21/2012 with nmh-1.7+dev
X-Exmh-Isig-CompType: repl
X-Exmh-Isig-Folder: inbox
From: karl@aspodata.se
To: gentoo-user@lists.gentoo.org
Subject: Re: Letsencrypt (was Re: [gentoo-user] app-misc/ca-certificates)
In-reply-to: <2212846.ElGaqSPkdT@iris>
References: <20210529030839.123d8526@melika.host77.tld> <61db8745-dbb4-9c7e-80a9-6725905178c4@iinet.net.au> <20210601104447.D7EA282B8F89@turkos.aspodata.se> <2212846.ElGaqSPkdT@iris>
Comments: In-reply-to "J. Roeleveld" <joost@antarean.org>
   message dated "Tue, 01 Jun 2021 13:17:12 +0200."
Precedence: bulk
List-Post: <mailto:gentoo-user@lists.gentoo.org>
List-Help: <mailto:gentoo-user+help@lists.gentoo.org>
List-Unsubscribe: <mailto:gentoo-user+unsubscribe@lists.gentoo.org>
List-Subscribe: <mailto:gentoo-user+subscribe@lists.gentoo.org>
List-Id: Gentoo Linux mail <gentoo-user.gentoo.org>
X-BeenThere: gentoo-user@lists.gentoo.org
Reply-to: gentoo-user@lists.gentoo.org
X-Auto-Response-Suppress: DR, RN, NRN, OOF, AutoReply
Mime-Version: 1.0
Content-Type: text/plain
Message-Id: <20210601131733.244B982B8F89@turkos.aspodata.se>
Date: Tue,  1 Jun 2021 15:17:33 +0200 (CEST)
X-Virus-Scanned: ClamAV using ClamSMTP
X-Archives-Salt: 1c00db8e-2fe5-4531-bc3d-7f428781a4ac
X-Archives-Hash: aed7298e35d598385349ff13418fa0f4

Joost:
> On Tuesday, June 1, 2021 12:44:47 PM CEST karl@aspodata.se wrote:
... [ about letsencrypt ] ...
> It's not that easy to do it with internal-only systems as Let's Encrypt 
> requires the hostname to be known externally.
> And there are plenty of devices you do not want the whole internet to know 
> about.

Just use a celf-certified cert and add an exeption in the web browser,
or set up your own CA, (I don't know how) and distribute its cert.

Regards,
/Karl Hammar