Let's Encrypt is designed to work with the new ACME protocol, which gets and validates certificates for you automatically. So you don't have to manually renew the certificate every 90 days -- you just have to set up a cron job or something to do it periodically.
Let's Encrypt's root cert is "IdenTrust’s DST Root X3", according to their FAQ, and according to that FAQ all non-ancient browsers support it. (The FAQ also explains ACME.)
I know the folks who developed Let's Encrypt, and they're some of the best Internet security people out there. They know what they're doing.
Let's Encrypt's root cert is "IdenTrust’s DST Root X3", according to their FAQ, and according to that FAQ all non-ancient browsers support it. (The FAQ also explains ACME.)
I know the folks who developed Let's Encrypt, and they're some of the best Internet security people out there. They know what they're doing.