General Discussion • Re: Enforced https on public sites

but me self signing a cert for my own domain is not trustworthy?

add it to the certificate database. works better when having a self signed CA, and then add to OS CA database - loved in enterprise environment

It seems kind of pointless if Let’s Encrypt will just issue a free certificate to anybody?

You should protect against using DNS CAA record.

Off-topic: I have a IPv4 certificate for fun/test now, updated each ~3 days, would not help here of course.