etc./letsencrypt/ had past five years of data

Question

Had to look by chance at that folder and found out the full history of certificates and keys were sitting there. I don't know what to think, isn't this like having a record of all your previous passwords?, but worse.

noodlesUK · Accepted Answer

It&rsquo;s not nearly as bad as you think. If you&rsquo;re a Let&rsquo;s Encrypt user, there&rsquo;s a high likelihood that your servers (and your clients) were negotiating PFS cipher suites.If they were, a compromise of the private key wouldn&rsquo;t mean that you could break past intercepted communications.https://en.m.wikipedia.org/wiki/Forward_secrecy