Does my site need HTTPS?

This page summarizes the projects mentioned and recommended in the original post on news.ycombinator.com
ACME Letsencrypt Shell Bash Server Applications

InfluxDB - Power Real-Time Data Analytics at Scale
Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
www.influxdata.com
featured
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com
featured

  • docs

    Documents about HTTPS development (by https-dev)

  • Caddy

    Fast and extensible multi-platform HTTP/1-2-3 web server with automatic HTTPS

    • This article comes off as basically victim-blaming, when it comes to "not my problem" if some bad actor injects ads etc.

    The arguments against Caddy are no longer true. Caddy runs on a ton of platforms, essentially any that Go can use as compile targets (except for plan9 for the moment because of a dependency of Caddy's that has a compatibility problem https://github.com/caddyserver/caddy/issues/3615#issuecommen...). Caddy also doesn't have to run as root, nor does it with our apt/yum packages.

    Also a passing comment essentially calling Let's Encrypt... with their track record at this point, I don't think that can be said.

    The rest is basically just vitriol.

  • InfluxDB

    Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

    InfluxDB logo

  • dehydrated

    letsencrypt/acme client implemented as a shell-script – just add water

    • > The letsencrypt auto renewer is great until you run a version of linux unsupported.

    Consider using an ACME client written in shell:

    * https://github.com/dehydrated-io/dehydrated

    * https://github.com/acmesh-official/acme.sh

    There's a minor change for the pre/post-scripts to restart your web server, and tell the web server where "/.well-known/acme-challenge/" should be served from, e.g.,:

    * https://salsa.debian.org/letsencrypt-team/dehydrated/-/blob/...

    But otherwise I find there are a lot fewer moving parts (and dependencies) than ACME clients written in other languages.

  • acme.sh

    A pure Unix shell script implementing ACME client protocol

    • > The letsencrypt auto renewer is great until you run a version of linux unsupported.

    Consider using an ACME client written in shell:

    * https://github.com/dehydrated-io/dehydrated

    * https://github.com/acmesh-official/acme.sh

    There's a minor change for the pre/post-scripts to restart your web server, and tell the web server where "/.well-known/acme-challenge/" should be served from, e.g.,:

    * https://salsa.debian.org/letsencrypt-team/dehydrated/-/blob/...

    But otherwise I find there are a lot fewer moving parts (and dependencies) than ACME clients written in other languages.

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts

  • SSL cert for DSM on Synology

    3 projects | /r/synology | 22 Apr 2023

  • Write Posix Shell

    10 projects | news.ycombinator.com | 11 Mar 2023

  • Does it really suck this much to set up SSL?

    6 projects | /r/selfhosted | 22 Oct 2022

  • Google announced its free ACME server

    3 projects | news.ycombinator.com | 11 Apr 2022

  • Cerbot, Ubuntu, CA cert expiry, Old version in repos WHY?

    2 projects | /r/sysadmin | 2 Jan 2022