Caddy's Certificate Management Policies
Caddy stepped into unknown territory when it became the first web server to use HTTPS by default and manage your TLS certificates for you. When Let's Encrypt suffered a connectivity issue yesterday, it exposed some grave realities (and misunderstandings) about automated certificate management. I'd like to talk about what happened, clarify a few things, make some recommendations, and raise questions for future consideration. The incident Approximately 1 hour after I went to sleep on Thursday night, Let's Encrypt began having some troubles with issuance.