I just wanted some people’s input about a solution to a problem I have.
How bad is it if I decide to ship a LE certificate and key to a web server which will only be deployed and accessed locally.
The Hostname will satisfy the
DNS-01 challenge and will point to
Of course it means the
Certificate and the
Key being widely distributed and renewed every time but shipping and updating is not a problem.
This is to avoid the famous
MIXED CONTENT error because a URL at
https://blih.mycompany.com would need to have access to say
https://localhost.mycompany.com which is
To my opinion since the
Key will be widely distributed but could only decrypt
localhost traffic which was in
HTTP anyway, it’s fine to implement.