There are now several new web servers that can automatically fetch and
renew SSL certificates from Let's Encrypt. In that case there is no need
to run certbot manually, write configuration files and set up cron jobs.
These look really promising.

Currently the following servers have this as far as I can tell:

* Armor
* Caddy (and its fork, Wedge)
* Traefik
* KatWeb

Do any of you have experience with these?

Many are written in Go, which seems to be the new fashionable choice for
web servers. Should help prevent buffer overflows, but on the other hand
it's difficult to control the lifetime and exposure of secret keys with
GC and threads. (This applies to Scheme too)