• Shadow@lemmy.ca
    link
    fedilink
    arrow-up
    0
    ·
    1 year ago

    Mtls across a large number of machines. I run my own CA and intermediates on hashicorp vault.

    For end user services, yes LE.

    • KairuByte@lemmy.dbzer0.com
      link
      fedilink
      arrow-up
      2
      ·
      1 year ago

      At the point of running your own CA with infrastructure in place to support it, I wouldn’t really call that “self signing.”

      I get that it technically is, since you’re not going through an external CA, but really it’s like calling a companies Datacenter “self hosted” because it’s on their own hardware. Technically the truth, but not what is generally meant. 😜