Why you think so? Keep in mind that revoked certs are not included in CRLs once expired (because they are not valid any more).

acme.sh has a list in their Wiki: https://github.com/acmesh-official/acme.sh/wiki/CA

Let's Encrypt will surely not be the only CA to discontinue OCSP after Microsoft removes their requirement.

Also one from Posh-ACME:

https://poshac.me/docs/v4/Guides/ACME-CA-Comparison/

Set Linux to interpret RTC as local time, or set Windows to interpret RTC as UTC (possibly better, as it won't adjust to DST). https://askubuntu.com/a/1377011

Maybe they like paying AWS. ¯\_(ツ)_/¯

For .pl the transfer is free, but it also does not extend expiration period (it stays the same).

How will you prevent someone sending emails on behalf of my domain?

We have capabilities to detect this sort of thing, but the best way a domain owner can prevent impersonation is by using DMARC.

Yeah. You can pull drives out and mount them in regular Linux. Synology uses standard Linux tools.

https://kb.synology.com/DSM/tutorial/How_can_I_recover_data_...

It begs for SVG export.

Yeah popped up in our Slack community. Seems to be handy to embed it into READMEs?!

SVG should be able to be embedded anywhere the regular images can be, at least in browser contexts. The advantages: vector graphics, so infinitely scalable, editable and smaller file size.

Serving videos (cached or not) is only allowed by using Cloudflare Stream or as a part of Enterprise contract.

My guesses: a) Amazon.com/co.uk/etc traffic is too big even for CloudFront. b) They don't want Amazon.com traffic to evict AWS customers' cached items out of CloudFront, the very reason customers buy CloudFront in the first place. c) Legacy, they just didn't move from Akamai yet.