Self-Hosted Alternatives to Popular Services

222 readers

1 users here now

A place to share, discuss, discover, assist with, gain assistance for, and critique self-hosted alternatives to our favorite web apps, web...

founded 2 years ago

MODERATORS

bot@lemmit.online

LessEncrypt: A light-weight tool for self-signed CA certificate signing and delivery (old.reddit.com)

submitted 2 months ago by bot@lemmit.online to c/selfhosted@lemmit.online

0 comments fedilink hide all child comments

This is an automated archive made by the Lemmit Bot.

The original was posted on /r/selfhosted by /u/jafo on 2025-05-31 13:32:10+00:00.

I had a shower idea a couple weeks ago about a lighter-weight certificate signing service for homelabs and dev environments where full LetsEncrypt certificates might be too much of a hassle. Our dev and staging environments at work use self-signed CA for 100+ VMs, most of which respin on a nightly basis. We normally would use some tooling to sign, encrypt, and deliver via Ansible certs to our hosts, but we spend more time than I'd like managing those.

LessEncrypt is a simple client and server that uses reverse DNS lookups to identify the certificate CN and SANs, and then deliver back to the host a signed cert. It uses ports in the <1024 range to lend some air of authority to the request.

https://github.com/linsomniac/lessencrypt

no comments (yet)

sorted by: hot top controversial new old

there doesn't seem to be anything here