1 files changed, 34 insertions, 0 deletions

diff --git a/stop-startssl.rst b/stop-startssl.rst
index 2240e7f..4e82d47 100644
--- a/stop-startssl.rst
+++ b/stop-startssl.rst
@@ -37,6 +37,34 @@ track record.
 
 It is time to move.
 
+Update on 2016-11-10
+--------------------
+
+So, I have finally found time to replace all my certificates with
+the ones from `Let’s Encrypt`_ [#]_ and it was the time to severe
+all my ties with StartSSL. Unfortunately, I have discovered that
+it is `the Hotel California`_ (“We are programmed to receive
+/ You can check out any time you like / But you can never
+leave!”). OK, so my account won’t be ever deleted and my personal
+data will be for seven years stored with 沃通, but at least I can
+revoke all my certificates, so that nobody would be mistaken
+I support their operations, right?. Wrong, this is what I see
+when I try to do revoke one of my certificate, I found that
+StartSSL requires payment when you try to abandon them!
+
+.. image:: {filename}/images/startssl-joke.png
+    :scale: 66%
+    :align: center
+    :alt: StartSSL requires payment when you try to leave
+
+
+
+.. [#] Using their certs on webserver-less XMPP-only server was
+    a bit challenge, but it is possible_, it is just necessary to
+    open ports 80 and 443 even without web server running behind
+    them, certbot will just fire up and then kill its own small
+    server.
+
 .. _`Security Now`:
     https://twit.tv/shows/security-now/episodes/576
 .. _`email from Mozilla`:
@@ -47,3 +75,9 @@ It is time to move.
     https://letsphish.org/?part=about
 .. _cached:
     http://archive.is/2016.08.26-085336/https://www.letsphish.org/?part=2
+.. _`Let’s Encrypt`:
+    https://letsencrypt.org/
+.. _possible:
+    https://certbot.eff.org/#centosrhel7-other
+.. _`the Hotel California`:
+    https://danconnor.com/posts/50f65364a0fd5fd1f7000001/avoid_startcom_startssl_like_the_plague_