User:Revi/LE-2021

TL;DR for those who are not familiar with technical details
''Some technical details are obfuscated or over-simplified because people will not understand the technical details. If you know what I am saying below, ignore this section.''


 * Let's Encrypt is migrating to their own infrastructure. (Previously, the leased from some other organizations)
 * However, Let's Encrypt debuted around 2015, which means some old Android devices (Android version prior to 7.1.1) will not be able to browse any site served by Let's Encrypt (custom domains served by Let's Encrypt). This is because Android version prior to 7.1.1 doesn't have necessary data to understand LE certificates.
 * There is currently two known mitigation.
 * You can get your own Custom domain with your own custom SSL certification. Domain is (mostly) not free, and SSL certifications outside of Let's Encrypt is not free.
 * You can direct your archaic Android users to use Firefox for Android. Firefox maintains their own list of certificates, and it includes LE.
 * This change is announced to happen around 2021-01-11, however I have observed that new certificates without compatibility is being issued as of 2020-12-11.
 * This likely means any certificates issued after 2020-12-11 or renewed after this date is likely to error on old Android devices. LE certificates are live for 3 months, and it's renewed every 2 months, so it is safe to assume that all websites will convert by Feb or March or 2021.