The difference between $0 and $50 isn’t really relevant.
Nougat
- 0 Posts
- 4 Comments
Joined 8 months ago
Cake day: March 3rd, 2024
You are not logged in. If you use a Fediverse account that is able to follow users, you can follow this user.
LetsEncrypt is legit. A downside is that the certs expire after 90 days. However, that also carries an upside in that it limits the damage in case a certificate is compromised. There are procedures by which you can automatically renew/request (I forget whether they allow renewing an existing cert or require a brand new one) LE certs and apply them to your application, but that can be fiddly to configure.
If you’re not comfortable with configuring automatic certificate cycling, a long-term paid cert would be more appropriate.
14·7 months agoIf you are accepting payments, you absolutely want to offload that to a third party payment processor, so that you don’t have to go through the hassle of doing PCI compliance.
Bad actors can afford $50 the same as good ones.