6-Day and IP Address Certificates Are Generally Available

Let’s Encrypt just dropped two spicy updates: ultra‑short 6‑day certificates and the ability to secure connections to a raw IP address (think “calling a house by its number, not its name”). The security crowd is hyped: shorter lifetimes mean stolen keys go stale fast, shrinking the panic window from months to days. They’re also teasing a future shift from 90‑day to 45‑day defaults. Translation: refresh often, sleep better.

But the comments? Pure popcorn. Tool drama exploded when users noticed popular helper app Certbot doesn’t handle IP certificates yet. One commenter flagged an open PR and sighed “not today.” Another shared a workaround with Lego (a different tool), admitting it took a bit of command‑line spelunking. The vibe is automation or bust—if your renewals aren’t fully hands‑free, six‑day certs will test your nerves.

Meanwhile, devs dreamed up hot use cases: ephemeral services that spin up for an hour, chat over encrypted lines, then vanish, no domain names required. Others asked, “Can this kill my self‑signed localhost setup?” Cue jokes like “six‑day detox for certs,” “cron leg day,” and the eternal “When does Caddy support this?” It’s a perfect storm of security glow‑up meets tooling chaos, with the crowd split between cheering the future and begging their apps to catch up.