Can free and open source software projects like Caddy and Traefik eventually replace EFF’s Certbot? Although Certbot continues to be developed, we think tools like these help offer a promising path forward in the further development of a secure and encrypted web. For some users, tools like these...
I use Traefik for all of my containerised services. It’s fantastic.
You know what’s even better? You can point traefik to your own ACME-compatible CA (I use step-ca) to get certs for LAN-only services. And you can even configure per service which one it should use.
Is this better than using wildcard certificates?
I have local only SSL via a wildcard *.local.domain.com
Instructions here:
https://youtu.be/liV3c9m_OX8
I think I set that up back when Let’s Encrypt didn’t offer wildcard certificates. In the end, it serves pretty much the same purpose.