Rate limit error

I don’t understand why I receive this error.
My current certificate has expired after 90 days so,
I run this command to get a new certificate for my domain: burnmyass.nl:

https://www.sslforfree.com/create?domains=burnmyass.nl+www.burnmyass.nl

It returns a rate limit error (status: 429).

Running https://crt.sh/?q=%.burnmyass.nl gives me:

Certificates crt.sh ID Logged At Not Before Not After Identity Issuer Name
1424445397 2019-04-27 2019-04-27 2019-07-26 www.burnmyass.nl C=US, O=Let’s Encrypt, CN=Let’s Encrypt Authority X3
1424445652 2019-04-27 2019-04-27 2019-07-26 www.burnmyass.nl C=US, O=Let’s Encrypt, CN=Let’s Encrypt Authority X3
949477946 2018-11-15 2018-11-15 2019-02-13 www.burnmyass.nl C=US, O=Let’s Encrypt, CN=Let’s Encrypt Authority X3
949478167 2018-11-15 2018-11-15 2019-02-13 www.burnmyass.nl C=US, O=Let’s Encrypt, CN=Let’s Encrypt Authority X3
934663437 2018-11-10 2018-11-10 2019-11-10 www.burnmyass.nl C=US, O=DigiCert Inc, OU=www.digicert.com, CN=Encryption Everywhere DV TLS CA - G1

I run my own web server with the certificates on it.
I do a manuall challenge to verify the domain is mine but I don’t get to that point because before I get anything I receive the rate limit error.

Hi @borrelnoten

please share the complete output of that error.

There is another thread - Error creating new account 429

Looks like Sslforfree has a bug and is blocked.

There - https://check-your-website.server-daten.de/?q=burnmyass.nl#ct-logs - is no rate limit visible.

Issuer not before not after Domain names LE-Duplicate next LE
Let's Encrypt Authority X3 2019-04-27 2019-07-26 burnmyass.nl, www.burnmyass.nl
2 entries
Let's Encrypt Authority X3 2019-02-02 2019-05-03 burnmyass.nl
1 entries
Let's Encrypt Authority X3 2018-11-15 2019-02-13 burnmyass.nl, www.burnmyass.nl
2 entries
Let's Encrypt Authority X3 2018-11-10 2019-02-08 burnmyass.nl
1 entries

Read

to understand the Letsencrypt rate limits.

PS: There is a limit:

You can create a maximum of 10 Accounts per IP Address per 3 hours. You can create a maximum of 500 Accounts per IP Range within an IPv6 /48 per 3 hours. Hitting either account rate limit is very rare, and we recommend that large integrators prefer a design using one account for many customers.

So if Sslforfree creates a new account per new certificate order and if 10 users use that, the next hits the limit.

1 Like

Then you should use your own client.

It's not a problem of your domain. It's a problem using that client.

1 Like

clear! Thank you for the quick answer! I’ll find another client to get the certificate.

1 Like

Hi @borrelnoten,

Please see the following thread for more information. SSL For Free hitting rate limits

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.