361
Let's Encrypt Announces New-Certificate-Every-6-Days Offering
(letsencrypt.org)
This is a most excellent place for technology news and articles.
You can use DNS challenge to renew your certificates without opening ports! Have a look at acme.sh for automation.
Oh, awesome! I thought that was a manual process, so I've been using the regular method.
Looks like I have a new project for this weekend. My DNS is currently hosted at Cloudflare, so this should be pretty straightforward.
Caddy with the cloudflare module makes TLS with DNS verification insanely simple
https://github.com/caddy-dns/cloudflare
Nice! I use Caddy, so this should be a snap.
certbot has modules for most DNS providers as well.