It is that time of year again to investigate SSL certs and whether paying for one is a better option. The cost is minimal with Namecheap/PositiveSSL, but is it really justified? With LetsEncrypt gaining huge momentum in the past year, I think they have their bugs worked out and will be a worthy choice.

StartSSL is still a no go for me. At least with a paid option, I can revoke it at no charge. Compare that to the aforementioned business model (may have changed, I hear they changed ownership) where you have to pay to revoke your free cert…

CACert.org is unfortunately not included in the rootCA list of many browsers, distros, OSs, so that is not an option either.

Seems like the actual list is narrowing down pretty fast isn’t it?