Readit NewsThe author did neither - he was steadfast that his approach was correct, and everyone else was wrong.
The concern is that the author failed to understand why his batshit-crazy intended behaviour was a bad design from the start.
> Nginx Introduces Native Support for Acme Protocol
IT: “It’s about fucking time!”
> The current preview implementation supports HTTP-01 challenges to verify the client’s domain ownership.
IT: “FUCK. Alright, domain registrar, mint me a new wildcard please, one of the leading web infrastructure providers still can’t do a basic LE DNS-01 pull in 2025.”
Seriously. PKI in IT is a PITA and I want someone to SOLVE IT without requiring AD CAs or Yet Another Hyperspecific Appliance (YAHA). If your load balancer, proxy server, web server, or router appliance can’t mint me a basic Acme certificate via DNS-01 challenges, then you officially suck and I will throw your product out for something like Caddy the first chance I get.
While we’re at it, can we also allow DNS-01 certs to be issued for intermediate authorities, allowing internally-signed certificates to be valid via said Intermediary? That’d solve like, 99% of my PKI needs in any org, ever, forever.
Caddy & Traefik did it long, long ago (half a decade ago), and after half a decade, we finally have ngxin supporting it too. Great move though, finally I won't have to manually run certbot :pray:
I need a tool to issue certs for a bunch of other services anyway, I don't really see how it became such a thing for people to want it embedded in their web server.
> But ultimately, should Google have hired me? Yes, absolutely yes. I am often a dick, I am often difficult, I often don’t know computer science, but. BUT. I make really good things, maybe they aren't perfect, but people really like them. Surely, surely Google could have used that.
It took over a decade before the project made some improvement on how the default install path is handled.
To my knowledge it still has absolutely atrocious dependency resolution relative to things like DPKG.
Not hiring this guy is honestly like a fancy restaurant not hiring the guy who comes up with the new McDonalds obesity burger special menu. What he created is popular, it's not good.
Currently working remote from Thailand (UTC+7), with potential for short on-site trips if necessary. Relocating to Australia soon(ish).
I have 20 years experience across a mixture of Ops/Infrastructure/Dev-Tools and web application architecture/development, with a focus on solving unique/uncommon problems.
I’m looking for opportunities to help companies with
- server infrastructure setup/maintenance; - backend/server-side architecture & development (primarily PHP MVC); - system integration;
I currently work remotely from Thailand, on a reasonably flexible schedule (I can schedule work hours to get overlap with most other timezones when required) but on-site visits to pretty much anywhere are a possibility if required too.
Contact me via email (in my profile) if you want to have a chat about what you’re working on!
So, thankyou for that AI techbros. Keep telling us loudly and proudly that you're using "AI" to write your slop, it makes it much easier to know what to avoid when skimming titles.
Someone references when you made an ass-backwards decision, and insisted you were correct; your immediate response is not any kind of explanation about how you learnt to trust other people's opinions, or even acknowledging that you got it wrong - you resort to petty childlike attempts at insult.