[llvm-dev] Bugzilla invalid certificate issues

Stephen Checkoway via llvm-dev llvm-dev at lists.llvm.org
Sat Feb 11 12:28:01 PST 2017

> On Feb 10, 2017, at 18:27, Chris Matthews via llvm-dev <llvm-dev at lists.llvm.org> wrote:
> Letsencrypt only offers domain validation certs. I think an EV cert would be more appropriate for llvm.org.

Interesting, why do you think EV certs are more appropriate? They don't offer any security benefits beyond those offered by DV certs. Given that much of llvm.org isn't even currently accessible over TLS, going straight to an EV cert seems overkill.

One nice aspect of Let's Encrypt certs is renewals are automatable so no one needs to keep track of when a new cert is necessary.

Stephen Checkoway

More information about the llvm-dev mailing list