(community.letsencrypt.org)

335 points Bogdanp | 1 comments | 25 Jun 25 16:21 UTC | HN request time: 0.239s | source

Show context

zdw ◴[25 Jun 25 17:41 UTC] No.44379917[source]▶

This seems to be for public IP addresses, not private RFC1918 ipv4 range addresses.

The only challenges possible are HTTP and TLS-ALPN, not DNS, so the "proof" that you own the IP is that LetsEncrypt can contact it?

1. ameliaquining ◴[25 Jun 25 19:21 UTC] No.44380959[source]▶

Yes, which is the same way control of a domain name is typically checked; DNS is only used in a minority of cases as it can't be as turnkey.

Getting ready to issue IP address certificates