Email or username:

Password:

Forgot your password?
All posts Thor 🇳🇴's posts Post Back to profile
Top-level
@thor >your illusion of CertBot being a good force for the world might shatter

do you mean certbot or letsencrypt specifically? either way it's done a lot of good by making HTTPS affordable (free) for everyone, where before you had to pay outrageous amounts of money for a certificate that encrypts your traffic.
23 Jul 2021 at 13:13 | Wall-to-wall | Open on programming.socks.town
7 comments
a1ba-nyan
@vae @thor it's just HTTPS shouldn't rely on CA from the beginning.
23 Jul 2021 at 13:17 | Open on expired.mentality.rip
Vftdan

@a1batross
Is it possible in this case to reach the same level of security without including public keys inside the server address?
@thor @vae

23 Jul 2021 at 16:07 | Open on mastodon.ml
a1ba-nyan
@vftdan @thor @vae even with self-signed certificate, TLS is still provides same level of security.
23 Jul 2021 at 16:10 | Open on expired.mentality.rip
Vftdan

@a1batross
How will it protect from malicious dns servers?
@thor @vae

23 Jul 2021 at 16:36 | Open on mastodon.ml
a1ba-nyan
@vftdan @thor @vae browsers AFAIK has an option to remember certificate.

Anyway, nobody checks cert fingerprint.
23 Jul 2021 at 16:51 | Open on expired.mentality.rip
Vftdan

@a1batross
But if it is the first time you are visiting this domain and you have to enter secret information in it?
@thor @vae

23 Jul 2021 at 17:50 | Open on mastodon.ml
a1ba-nyan
@vftdan @thor @vae then may Princess Celestia help you.

Even with CA (especially in Let's Encrypt era), nothing will stop you from accessing malicious website.
23 Jul 2021 at 17:59 | Open on expired.mentality.rip
Go Up