this post was submitted on 09 Jul 2026
5 points (100.0% liked)
Hacker News
5153 readers
413 users here now
Posts from the RSS Feed of HackerNews.
The feed sometimes contains ads and posts that have been removed by the mod team at HN.
founded 2 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
Overall this is a good guide! Security best practices say you should use a unique certificate for each service to limit the spread of damage if it's compromised, and you also lower the number of services that need to be refreshed at the same time when a single cert is renewed.