I have everything aggregated into Gmail, so I just use web and the mobile app. I’m looking at Proton but it doesn’t have the “send as” feature for external SMTP services the Gmail does.
I’m honestly a bit surprised that Proton doesn’t seem to have the send as feature. I was able to find at least 15 posts across their uservoice.com site and their Reddit forum, spanning at least 6 years, with one of the uservoice posts having over 300 votes. I just gathered up all the links and sent it into Proton Mail support. Hopefully having all that thrown at them in one big bundle will prompt their project managers to consider it.
Here too the Schrödinger’s equations apply: a programmer’s state during coding is a superposition of both of these states until actually trying to run the code, at which point it collapses into one of the two states.
Isn’t that first artwork from the Atari BASIC book cover? I suffered enough with BASIC on my TI-99 and IBM XT, I can’t imagine how rough the Atari version was.
Not the only use cases, but you’d need a different service if you need/want wildcard certs, certs that are manually installed and managed, or certs with a longer expiration.
I’d say they’re actually easier, at least in my experience. Since wildcard certs use DNS-01 verification with an API, you don’t need to deal with exposing port 80 directly to the internet.
You can also delegate a subdomain to another provider with an API, but yes I see what you mean. Although I feel like getting port 80 open would be difficult as well in those situations.
I’ve just moved to Thunderbird. I was never keen on the old design and found it rather clunky but the new UI I find much better.
I was using Mailspring but it has recently just refused to work on my device and I never even got a response on the community forums so I’ve just given up on it.
AFAIK, the only reason not to use Letsencrypt are when you are not able to automate the process to change the certificate.
As the paid certificates are valid for 12 month, you have to change them less often than a letsencrypt certificate.
At work, we pay something like 30-50€ for a certificate for a year. As changing certificates costs, it is more economical to buy a certificate.
But generally, it is best to use letsencrypt when you can automate the process (e.g. with nginx).
As for the question of trust: The process of issuing certificates is done in a way that the certificate authority never has access to your private key. You don’t trust the CA with anything (except your payment data maybe).
The person isn’t talking about automating being difficult for a hosted website. They’re talking about a third party system that doesn’t give you an easy way to automate, just a web gui for uploading a cert. For example, our WAP interface or our on-premise ERP don’t offer a way to automate. Sure, we could probably create code to automate it and run the risk it breaks after a vendor update. It’s easier to pay for a 12 month cert and do it manually.
There's a certbot addon which uses nginx directly to renew the certificate (so you don't need to stop the web server to renew). If you install the addon you just use the same certbot commands but with --nginx instead and it will perform the actions without interfering with web server operation.
You just then make sure the cron job to renew also includes --nginx and you're done.
Whats the best email service? I use Thunderbird for just about everything, but gmail has been getting on my nerves lately. I would love to selfhost, but my internet service provider blocks port 25…
Really depends on how you define “best”, but maybe Fastmail if your priority is features and usability or Protonmail if you value privacy a lot.
I would love to selfhost, but my internet service provider blocks port 25…
Selfhosting email is generally not worth it in my opinion and doing it from a residential connection is pretty much doomed to fail right from the start.
I’ve been using Protonmail and it does the job (although not for free). To use it with Thunderbird I need to use a “bridge” background app to decrypt it though.
So, the web uses a system called chain of trust. There are public keys stored in your system or browser that are used to validate the public keys given to you by various web sites.
Both letsencrypt and traditional SSL providers work because they have keys on your system in the appropriate place so as to deem them trustworthy.
All that to say, you’re always trusting a certificate authority on some level unless you’re doing self signed certificates… And then nobody trusts you.
The main advantage to a paid cert authority is a bit more flexibility and a fancier certificate for your website that also perhaps includes the business name.
Realistically… There’s not much of a benefit for the average website or even small business.
I used to have lieer’s gmi (read: mbsync with gmail tag syncing) paired with notmuch. It’s good when it works, but it’s annoying to need a service in the background.
I used to use Gnus, but Gnus is sometimes weirds out if your tag filters are too complex for it
kbin.life
Oldest