• kn33@lemmy.world
      link
      fedilink
      English
      arrow-up
      6
      ·
      20 days ago

      It’s more of an issue when it’s every 90 days. Even worse is the labor cost to replace the certificate on everything that needs it every 90 days.

      • pixely@lemmy.world
        link
        fedilink
        English
        arrow-up
        1
        ·
        19 days ago

        Are these genuinely being hand rolled in an enterprise environment? Unless it’s completely impossible to automate then I can’t be sympathetic to companies that are just doing it wrong.

        • kn33@lemmy.world
          link
          fedilink
          English
          arrow-up
          3
          ·
          19 days ago

          There’s lots of equipment that can’t accept certificates automatically. If they can, it might be in a closed off way that’s difficult to impossible to reverse engineer. If you can, that’s still a lot of skill and labor, which drives up the cost. They also might find out that it would be insecure to do it automatically.