• kn33@lemmy.world
        link
        fedilink
        English
        arrow-up
        6
        ·
        2 months ago

        It’s more of an issue when it’s every 90 days. Even worse is the labor cost to replace the certificate on everything that needs it every 90 days.

        • pixely@lemmy.world
          link
          fedilink
          English
          arrow-up
          1
          ·
          2 months ago

          Are these genuinely being hand rolled in an enterprise environment? Unless it’s completely impossible to automate then I can’t be sympathetic to companies that are just doing it wrong.

          • kn33@lemmy.world
            link
            fedilink
            English
            arrow-up
            3
            ·
            2 months ago

            There’s lots of equipment that can’t accept certificates automatically. If they can, it might be in a closed off way that’s difficult to impossible to reverse engineer. If you can, that’s still a lot of skill and labor, which drives up the cost. They also might find out that it would be insecure to do it automatically.