Gentoo Archives: gentoo-user

From: karl@××××××××.se
To: gentoo-user@l.g.o
Subject: Letsencrypt (was Re: [gentoo-user] app-misc/ca-certificates)
Date: Tue, 01 Jun 2021 10:44:55
In Reply to: Re: [gentoo-user] app-misc/ca-certificates by William Kenworthy
1 BillK:
2 ...
3 > And another "wondering" - all the warnings about trusting self signed
4 > certs seem a bit self serving. Yes, they are trying to certify who you
5 > are, but at the expense of probably allowing access to your
6 > communications by "authorised parties" (such as commercial entities
7 > purchasing access for MITM access - e.g. certain router/firewall
8 > companies doing deep inspection of SSL via resigning or owning both end
9 > points). If its only your own communications and not with a third,
10 > commercial party self signed seems a lot more secure.
11 ...
13 You can use instead of a self-signed cert:
15 Let's Encrypt is a free, automated, and open certificate authority
16 brought to you by the nonprofit Internet Security Research Group (ISRG).
18 It was pretty simple to get it to work with
21 Regards,
22 /Karl Hammar


Subject Author
Re: Letsencrypt (was Re: [gentoo-user] app-misc/ca-certificates) "J. Roeleveld" <joost@××××××××.org>