The "DNS provider with a better API" can be your own bind9 server on the same ma... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		rossy on Aug 21, 2021 \| parent \| context \| favorite \| on: Another free CA as an alternative to Let's Encrypt The "DNS provider with a better API" can be your own bind9 server on the same machine as certbot, updated with RFC 2136. Completely standard, no changing APIs, no 4th party, no maintenance. I set up a server like this at work and haven't touched it for a year and a half.

gunapologist99 on Aug 21, 2021 [–]

bind hasn't exactly had a flawless security history...

(also hope that not touching it means you've automated security updates at least)

Consider applying for YC's Fall 2025 batch! Applications are open till Aug 4
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact