HackerTrans
TopNewTrendsCommentsPastAskShowJobs

eric_trackjs

no profile record

Submissions

Show HN: CertKit for automating SSL certs to Windows, JKS, and appliances

certkit.io
7 points·by eric_trackjs·3 tháng trước·0 comments

How likely is a man in the middle attack?

certkit.io
6 points·by eric_trackjs·5 tháng trước·0 comments

comments

eric_trackjs
·2 tháng trước·discuss
I'm working on https://www.certkit.io. It started as a solution to handle TLS certificate automation for my other SaaS products, but we realized other people who run on-prem workloads might get something out of it.

It uses Let's Encrypt by default. We use delegated DNS to handle ACME challenge validation (we run the DNS, you just CNAME to us). This means you don't need to give us DNS credentials or anything. And for HA workloads it's great, because there's a central clearinghouse for certificates - so all the machines in your web farm (or whatever) get the same cert, but you don't run in to rate limits with LE.

We're recovering Windows Server guys so we made sure our automation works for painful windows workloads like IIS, Exchange etc. too.

We've had enough interest that we're building it out for real. Just left beta last month.
eric_trackjs
·6 tháng trước·discuss
crt.sh is a wonderful tool. I applaud anyone who makes CT log searching more available!

That said, crt.sh can be woefully unreliable. It often returns errors during a query or is just hard down. Large result sets may never return. Queries often take a very long time.

I wanted a more reliable CT log search tool for something I'm working on, so I built a purpose built CT log search tool. I ingest all the data from the logs directly and store in Clickhouse.

https://www.certkit.io/tools/ct-logs/