• well I mean it will now auto-renew my ssl cert and reapply for free indefinitely without me touching a thing on my server or at my domain registrar again.

    9/10 home networks have no need for a real domain to be used for the dns. most of the time they'll use .local and live with browsers throwing a shit-fit every time you load the page and haven't opted out of the certificate warning but it is a pain in the arse if you're using a lot of stuff locally.

    they're both convenience changes but already they've made the rest of the setup much smoother so far.

  • I didn't think that you could auto-renew with letsencrypt - Don't you need to provide a new DNS TXT record each time to show that you actually own the domain?

    Or is that the bit that you have set up automagically

  • if your registrar supports it you can give it api access and it will create the txt entry and delete it after as part of the renewal. look up acme.sh and you can see if it supports your registrar.

About