Private keys are now generated on the client using the Web Crypto API and never transmitted now. Merry Christmas all!

Use the manual verification if you're scared. You don't enter any information. Or install the official client manually - https://letsencrypt.org/

This service supports up to 100 domains per certificate using SAN. By default it secures domain.com and www.domain.com

It should work now. There was some browser compatibility problems that I just fixed.

The key is generated and instantly outputted over SSL. Nothing is ever stored nor would I want that liability. Would it better if I did the private key generation on the client side so that your browser generates it? The only issue with that is that it's a lot slower and browser compatibility isn't great.

Look at StartSSL's workflow.

i appreciate the effort to make SSL free and easy. i know the first time I attempted to use lets encrypt it took a bit of work getting setup. what's the possibility of using electron and doing the work locally?

Okay sorry, I looked at electron. If you want a local copy you can try https://gethttpsforfree.com/ it's completely client sided, you can save the html file and use whenever. You have to generate your own keys and CSR though

I just ran through the process, and it worked very smoothly. No hick-ups, it just worked. SSLlabs reports an A. Very awesome.

Thanks. SSL should always have been this easy. I used the let's encrypt client when it came out and it took 3 hours to install on my server requiring root access. I couldn't get a client working on windows as well so for people without root access to their server they can't even really get a certificate. I paid for my certificates before this and it takes at least 30 minutes. This literally takes seconds once you know your FTP or know how to manually do it.

I don't use electron so I'm not sure. This service is for people that don't have access to SSH or don't know how to use letsencrypts' official client on their hosting server. If you do have access then it's best to use the client and have an auto-renew cron, then you won't ever have to renew a certificate again as it will renew and install periodically. If you run cPanel on Cent 6/7 use this guide https://forums.cpanel.net/threads/how-to-installing-ssl-from....

Thanks for the suggestion. I'll definitely keep it in mind for the future.

No email tracking can work all the time but this will work in as much cases as possible, is completely free, and is so seamless you don't even know it's there until you need it. Enable it and I guarantee you will get some interesting stats about the people you email. It's definitely helped with my follow ups and replies.

You kind of dodged the person's question. What do you use to check that emails are opened?

Sorry. The extension uses a hidden tracking pixel to check if emails get opened.

If the recipient blocks images it will not work unless either you persuade them to unblock images by including an image they would want to see or they click on a link (link tracking only for pro users). Most users won't have images blocked automatically especially if it's someone you commonly email. No email tracking can work all the time but this will work in as much cases as possible, is completely free, and is so seamless you don't even know it's there until you need it. Enable it and I guarantee you will get some interesting stats about the people you email. It's definitely helped with my follow ups and replies.