Are there any other CAs provide free SSL certificates? Are there any CAs offer free IPv4/IPv6 certificates?
Also, what's the lowest price for a code signing certificate?
i’ve used it before, it works. there used to be an english version, freessl.org, but it seems to be fundamentally different from the chinese version now
It requires SMS verification with a +86/China phone number.
weird, i never had to. i’ve been registered for a long time though
I have an old registration too, and they asks an SMS validation from me too when I try to log in to my exist account (it started more than one year). And sadly not found any working SMS validation tool, service which work with it.
I got one last year, and perhaps they discontinue the free service.
There's another pure ACME.sh CA (they don't support certbot. ACME.sh only) called HiCA. They're a Chinese CA and they provide 180 day free single domain wildcard RSA 2048 ssl (when use acme.sh, please make sure it's NOT generating an ECC csr). They charge a fee for IPv4 & IPv6 address ssl, .onion ssl, and ECC ssl. Check this: https://www1.hi.cn/en/docs/tutorial-expert/premium-subscription/
I got one last year, and perhaps they discontinue the free service.
There's another pure ACME.sh CA (they don't support certbot. ACME.sh only) called HiCA. They're a Chinese CA and they provide 180 day free single domain wildcard RSA 2048 ssl (when use acme.sh, please make sure it's NOT generating an ECC csr). They charge a fee for IPv4 & IPv6 address ssl, .onion ssl, and ECC ssl. Check this: https://www1.hi.cn/en/docs/tutorial-expert/premium-subscription/
This fee can only be paid via Alipay
LetsEncrypt also provides 180 days single domain wildcard SSL certificates IF you do the verification using the DNS Zones.
@somik said:
LetsEncrypt also provides 180 days single domain wildcard SSL certificates IF you do the verification using the DNS Zones.
Wrong. Let's Encrypt only issues 90 days certificate.
If you do see a Let's Encrypt certificate that has a validity longer than 90 days, please share a crt.sh number here.
@somik said:
LetsEncrypt also provides 180 days single domain wildcard SSL certificates IF you do the verification using the DNS Zones.
Wrong. Let's Encrypt only issues 90 days certificate.
If you do see a Let's Encrypt certificate that has a validity longer than 90 days, please share a crt.sh number here.
I have not used any free CAs other than Let's Encrypt. The reason is mostly because Let's Encrypt came first. In addition, I trust the people behind Let's Encrypt. I have also used self-signed certs where appropriate.
@xleet said:
In addition, I trust the people behind Let's Encrypt.
All CAs are trustworthy because they are annually audited and they operate under the CABForum Baseline requirements. Thanks to the CT, it's nearly impossible for them to mis-issue certificates. It's not a bad idea to try a different CA
@xleet said:
In addition, I trust the people behind Let's Encrypt.
All CAs are trustworthy because they are annually audited and they operate under the CABForum Baseline requirements. Thanks to the CT, it's nearly impossible for them to mis-issue certificates. It's not a bad idea to try a different CA
I was referring to the work they did to develop the ACME protocols and the overall architecture.
Among the cloud service providers in China, each of them offers a free one-year single-domain certificate. Alibaba Cloud and Huawei Cloud provide a free one-year single-domain certificate from "Encryption Everywhere," while Tencent Cloud and UCloud provide a free one-year single-domain certificate from "TrustAsia." However, it can be challenging for foreigners to apply as real-name authentication is required.
Comments
1
are others free?
post links please.
Links:
1. Let's Encrypt: https://letsencrypt.org/
2. Google: https://cloud.google.com/blog/products/identity-security/automate-public-certificate-lifecycle-management-via--acme-client-api
3. Buypass: https://www.buypass.com/products/tls-ssl-certificates/go-ssl
4. ZeroSSL: https://zerossl.com/go/
5. SSL.com: https://www.ssl.com/how-to/order-free-90-day-ssl-tls-certificates-with-acme/
LE option 1 , please !
Thanks
Dentistry is my passion
most are all ACME
https://freessl.cn
TrustAsia 1 year certs
This sound like a first class trolling
It requires SMS verification with a +86/China phone number.
All ACME
i’ve used it before, it works. there used to be an english version, freessl.org, but it seems to be fundamentally different from the chinese version now
weird, i never had to. i’ve been registered for a long time though
I have an old registration too, and they asks an SMS validation from me too when I try to log in to my exist account (it started more than one year).
And sadly not found any working SMS validation tool, service which work with it.
You can also check lookssl.com. They issue free one year certificate and the CA is Certum
No one is going to mention "Self signed"? It is technically "free"
Somik.org - Server admins cheat codes
i try to create a crt for ( Root Free 1 Year SSL )
it and outputs
( The product is under stock )
i wrote to support and lets see when they reply.
Thanks anyways for posting
ehab
I was also looking at it, but decided against it as I prefer automatic renewals of LetsEncrypt.
Somik.org - Server admins cheat codes
Thank you for the information! Seems it's not working now.
@somik
I got one last year, and perhaps they discontinue the free service.
There's another pure ACME.sh CA (they don't support certbot. ACME.sh only) called HiCA. They're a Chinese CA and they provide 180 day free single domain wildcard RSA 2048 ssl (when use acme.sh, please make sure it's NOT generating an ECC csr). They charge a fee for IPv4 & IPv6 address ssl, .onion ssl, and ECC ssl. Check this: https://www1.hi.cn/en/docs/tutorial-expert/premium-subscription/
This fee can only be paid via Alipay
LetsEncrypt also provides 180 days single domain wildcard SSL certificates IF you do the verification using the DNS Zones.
Somik.org - Server admins cheat codes
Wrong. Let's Encrypt only issues 90 days certificate.
If you do see a Let's Encrypt certificate that has a validity longer than 90 days, please share a crt.sh number here.
Source: https://letsencrypt.org/docs/faq/#what-is-the-lifetime-for-let-s-encrypt-certificates-for-how-long-are-they-valid
LOL, ya, that's what i meant to say. 3 months wildcard single domain cert with DNS verification.
Somik.org - Server admins cheat codes
I miss good old WoSign, 2-year wildcard certs for free!
Or was it multi-domain but not wildcard, I don't remember.
This one is valid for 6 months! 2x than let's encrypt
They mis-issue many certificates. You may not want it.
Also cert lifespan is limited to 1 year now, so 2-year is impossible
It doesn't matter to me how long the cert is valid for as I always setup auto renewal using cron through certbot
Somik.org - Server admins cheat codes
I have not used any free CAs other than Let's Encrypt. The reason is mostly because Let's Encrypt came first. In addition, I trust the people behind Let's Encrypt. I have also used self-signed certs where appropriate.
All CAs are trustworthy because they are annually audited and they operate under the CABForum Baseline requirements. Thanks to the CT, it's nearly impossible for them to mis-issue certificates. It's not a bad idea to try a different CA
Hahaha, that's too coincidental, it's almost exactly what I found when I searched.
I was referring to the work they did to develop the ACME protocols and the overall architecture.
Among the cloud service providers in China, each of them offers a free one-year single-domain certificate. Alibaba Cloud and Huawei Cloud provide a free one-year single-domain certificate from "Encryption Everywhere," while Tencent Cloud and UCloud provide a free one-year single-domain certificate from "TrustAsia." However, it can be challenging for foreigners to apply as real-name authentication is required.