←back to thread

LetsEncrypt – Expiration Notification Service Has Ended

(letsencrypt.org)
181 points zdw | 2 comments | 30 Jun 25 04:49 UTC | HN request time: 0s | source
Show context
leakycap ◴[30 Jun 25 04:52 UTC] No.44419518[source]
One could say it expired.

> Providing expiration notifications costs Let’s Encrypt tens of thousands of dollars per year, money that we believe can be better spent on other aspects of our infrastructure.

Appreciate the honesty (they had other reasons, too! but emails are a pain and expensive at their scale)

replies(2): >>44420397 #>>44420498 #
genewitch ◴[30 Jun 25 07:34 UTC] No.44420498[source]
tens of thousands of dollars? that's it? No one can just write them a check? switchgear costs more than that!
replies(6): >>44420556 #>>44420984 #>>44421195 #>>44421321 #>>44421642 #>>44422816 #
1. jeroenhd ◴[30 Jun 25 09:26 UTC] No.44421195[source]
Anyone who can write them a cheque can also set up such a service themselves. All of the certificates are freely available in the CT logs, and every domain must have a reachable email address (or they risk their domain being taken from them). You can probably save a lot of money (and be less liable for violating spam laws) by making the free service opt-in, of course.

LE just isn't interested in maintaining such a service. Sending them money won't make them interested all of the sudden; that money can be spent better on setting up an independent free alternative.

replies(1): >>44421798 #
2. heartoffoo ◴[30 Jun 25 11:06 UTC] No.44421798[source]
A thousand helpful new fremium startups nominating themselves to send email to the overall domain admin email of record when CT indicates an upcoming expiration is hardly the same thing as the ACME server sending an email to the actual email sent at the time of registration.