Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

You do realize you're making this complaint on a discussion about a tool that makes HTTPS easier for said small hobbyist websites? I've updated all of my hobby sites using Let's Encrypt, and I really appreciate how it was easy for me while also being good for my users.


My comment isn't against Let's Encrypt. It's against blacklisting text only sites that don't need HTTPS.


If a "text-only" website is on HTTP it can be MITM'ed and used to serve up malicious JS.


Nobody is blacklisting them. The visitors are just being informed of the risks.

The warning used to be the absence of a pad-lock, but who notices that?




Consider applying for YC's Summer 2026 batch! Applications are open till May 4

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: