Email or username:

Password:

Forgot your password?
All posts Thor 🇳🇴's posts Post Back to profile
Thor 🇳🇴
it took me a good 7 seconds to notice "eBooks" in the screen name. the post *almost* made sense to me.
23 Jul 2021 at 13:01 | Open on pl.thj.no
9 comments
Thor 🇳🇴
how it almost made sense:
- certbot expires certificates after some time
- this means it keeps track of your domains
- this is arguably a form of surveillance
- once you realise this, your illusion of CertBot being a good force for the world might shatter
- the machine, CertBot, is specifically designed for writing domain records
how it almost made sense:
- certbot expires certificates after some time
- this means it keeps track of your domains
- this is arguably a form of surveillance
23 Jul 2021 at 13:02 | Open on pl.thj.no
væ
@thor >your illusion of CertBot being a good force for the world might shatter

do you mean certbot or letsencrypt specifically? either way it's done a lot of good by making HTTPS affordable (free) for everyone, where before you had to pay outrageous amounts of money for a certificate that encrypts your traffic.
23 Jul 2021 at 13:13 | Open on programming.socks.town
a1ba-nyan
@vae @thor it's just HTTPS shouldn't rely on CA from the beginning.
23 Jul 2021 at 13:17 | Open on expired.mentality.rip
Vftdan

@a1batross
Is it possible in this case to reach the same level of security without including public keys inside the server address?
@thor @vae

23 Jul 2021 at 16:07 | Open on mastodon.ml
a1ba-nyan
@vftdan @thor @vae even with self-signed certificate, TLS is still provides same level of security.
23 Jul 2021 at 16:10 | Open on expired.mentality.rip
Vftdan

@a1batross
How will it protect from malicious dns servers?
@thor @vae

23 Jul 2021 at 16:36 | Open on mastodon.ml
a1ba-nyan
@vftdan @thor @vae browsers AFAIK has an option to remember certificate.

Anyway, nobody checks cert fingerprint.
23 Jul 2021 at 16:51 | Open on expired.mentality.rip
Vftdan

@a1batross
But if it is the first time you are visiting this domain and you have to enter secret information in it?
@thor @vae

23 Jul 2021 at 17:50 | Open on mastodon.ml
a1ba-nyan
@vftdan @thor @vae then may Princess Celestia help you.

Even with CA (especially in Let's Encrypt era), nothing will stop you from accessing malicious website.
23 Jul 2021 at 17:59 | Open on expired.mentality.rip
Go Up