• kn33@lemmy.world
    link
    fedilink
    English
    arrow-up
    6
    ·
    14 days ago

    It’s more of an issue when it’s every 90 days. Even worse is the labor cost to replace the certificate on everything that needs it every 90 days.

    • pixely@lemmy.world
      link
      fedilink
      English
      arrow-up
      1
      ·
      13 days ago

      Are these genuinely being hand rolled in an enterprise environment? Unless it’s completely impossible to automate then I can’t be sympathetic to companies that are just doing it wrong.

      • kn33@lemmy.world
        link
        fedilink
        English
        arrow-up
        3
        ·
        13 days ago

        There’s lots of equipment that can’t accept certificates automatically. If they can, it might be in a closed off way that’s difficult to impossible to reverse engineer. If you can, that’s still a lot of skill and labor, which drives up the cost. They also might find out that it would be insecure to do it automatically.