• RegalPotoo@lemmy.world
    link
    fedilink
    English
    arrow-up
    13
    ·
    2 months ago

    It’s not the issuance that’s the headache, it’s the installation. There are more things that need valid certs than just webservers

      • wizardbeard@lemmy.dbzer0.com
        link
        fedilink
        English
        arrow-up
        22
        ·
        2 months ago

        Any number of numerous appliances and hideously malformed business systems that don’t have ways to automate cert changes.

        Not everyone gets to work in their simple little world of standards-following lab servers.

      • Terrasque@infosec.pub
        link
        fedilink
        English
        arrow-up
        10
        ·
        2 months ago

        This has a lot of “I can use the bus perfectly fine for my needs, so we should outlaw cars” energy to it.

        There are several systems, like firewalls , switches, routers, proprietary systems and so on that only has a manual process for updating, that can’t be easily automated.

          • Terrasque@infosec.pub
            link
            fedilink
            English
            arrow-up
            5
            ·
            2 months ago

            Hah. Snake oil vendors will still sell snake oil, CEO will still be dazzled by fancy dinners and fast talking salesmen, and IT will still be tasked with keeping the crap running.