Let's Encrypt: a real open certificate authority
I ran into Let's Encrypt project few months ago, after reading on the website of an independent radio that they finally solved their own issues with SSL by creating a Valid Certificate using Let's Encrypt . At the beginning I imagined that they would have created something like self-signed certificates or something that, at the end, wouldn't be valid completely or at least not useful without user's validation. Surprisingly this was not the case, they either have a valid certificate and the browser used to like it too. I was curious and I wanted to go in deep with this. The opportunity fell from the sky , when after revoking a certificate and rekeying the same for another domain, I had to leave a domain with an invalid and revoked certificate. This shouldn't represent a problem, since the domain was hosting a website quite outdated. However I forgot that someone was still embedding iframes from that domain, moreover they neither can modify easily tons