Notes from #MetaBrainz Meeting on 2016-08-29

Tags: #<Tag:0x00007f2a0036a1d8>


#MetaBrainz Meeting 2016-08-29

Meeting start:


  • Reviews













Let’s encrypt does support multiple domains being present by setting subject alternatie names.
You can have up to 99 domain names used by the one ssl certificate.
To get this working you need to create a certificate signing request with all the domains you want defined as san.
You also will need to have the same file mapping work to a common directory used to verify the domain ownership as let’s encrypt will one by one verify each domain mentioned.


I think the point was that it doesn’t support wildcards. I think both and currently has *.m{eta,usic} certificates.


The main draw of wildcard certificates is price (if you otherwise need a lot of certs), and that you can roll out new hostnames in a snap. LE certificates got you covered on both counts.

The downside of LE is that, once you have more than one or two certificates, you practically must implement automation. Once you are past that hump, it does not matter much whether you have two (maybe wildcard) certificates, or two hundred.