Howdy, Stranger!

It looks like you're new here. If you want to get involved, click one of these buttons!

Sign In Register

Quick Links


Categories

In this Discussion

Let's Encrypt : We Issued Our First IP Address Certificate !
New on LowEndTalk? Please Register and read our Community Rules.

All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.

Let's Encrypt : We Issued Our First IP Address Certificate !

xemapsxemaps Member
edited July 6 in News

Since 1st July 2025, Let's Encrypt can issue IP Address Certificate !

To have your first IP CERTIFICATE go to staging
A good usage is Securing remote access IP like device, VPS host, RDP, ...
So good luck LETSENCRYPT !
Source LetsEncrypt.org

Thanked by 5oloke mrTom Void Fubukibox satorik

Comments

  • IntelpentiummIntelpentiumm Member

    Great news

    Thanked by 1xemaps
  • LeviLevi Member

    On another hand malware C&C's will also celebrate.

  • VoidVoid Member

    Make use of it while it lasts 🤣

  • therawtheraw Member

    @xemaps said:

    Since 1st July 2025, Let's Encrypt can issue IP Address Certificate !

    To have your first IP CERTIFICATE go to staging
    A good usage is Securing remote access IP like device, VPS host, RDP, ...
    So good luck LETSENCRYPT !
    Source LetsEncrypt.org

    can i wildcard 0.0.0.0/0

  • xemapsxemaps Member

    @Levi said:
    On another hand malware C&C's will also celebrate.

    There are certificates everywhere today. How would they do more damage with an SSL Letsencrypt certificate? I am curious to see your/the solution.

  • xemapsxemaps Member

    @theraw said:
    can i wildcard 0.0.0.0/0

    I suggest to try to acquire the best for you 255.255.255.255/32 :*

  • LeviLevi Member

    @xemaps said:

    @Levi said:
    On another hand malware C&C's will also celebrate.

    There are certificates everywhere today. How would they do more damage with an SSL Letsencrypt certificate? I am curious to see your/the solution.

    Now they need domain to be purchased and active. IP, especially ipv6 is unmetered resource for malice. But that’s just fud. Safely ignore. Doomer must doom.

  • kedihackerkedihacker Member

    @Levi said:

    @xemaps said:

    @Levi said:
    On another hand malware C&C's will also celebrate.

    There are certificates everywhere today. How would they do more damage with an SSL Letsencrypt certificate? I am curious to see your/the solution.

    Now they need domain to be purchased and active. IP, especially ipv6 is unmetered resource for malice. But that’s just fud. Safely ignore. Doomer must doom.

    They can just dispose of addresses after use like they don't use hacked servers for c2?

  • sillycatsillycat Member

    @Levi said:
    On another hand malware C&C's will also celebrate.

    Why would they use https? Simply useless and makes their stuff more easily detectable (see: cert transparency).

    Thanked by 2xemaps tentor
  • LeviLevi Member

    @sillycat said:

    @Levi said:
    On another hand malware C&C's will also celebrate.

    Why would they use https? Simply useless and makes their stuff more easily detectable (see: cert transparency).

    Wait, so encryption in this case is bad?

  • kedihackerkedihacker Member

    @Levi said:

    @sillycat said:

    @Levi said:
    On another hand malware C&C's will also celebrate.

    Why would they use https? Simply useless and makes their stuff more easily detectable (see: cert transparency).

    Wait, so encryption in this case is bad?

    They can just pin a certificate which doesn't need to be publicly trusted.

    Thanked by 1sillycat
  • TimboJonesTimboJones Member

    @sillycat said:

    @Levi said:
    On another hand malware C&C's will also celebrate.

    Why would they use https? Simply useless and makes their stuff more easily detectable (see: cert transparency).

    So that it isn't easily picked off with a basic DPI firewall.

Sign In or Register to comment.