From: | Michael Orlitzky <mjo@g.o> | ||
---|---|---|---|
To: | gentoo-user@l.g.o | ||
Subject: | Re: Letsencrypt (was Re: [gentoo-user] app-misc/ca-certificates) | ||
Date: | Tue, 01 Jun 2021 12:17:08 | ||
Message-Id: | 9e56e085f91a57cfe81f857675118517f12ea5b8.camel@gentoo.org | ||
In Reply to: | Re: Letsencrypt (was Re: [gentoo-user] app-misc/ca-certificates) by Peter Humphrey |
1 | On Tue, 2021-06-01 at 13:02 +0100, Peter Humphrey wrote: |
2 | > |
3 | > So what would you recommend for someone in the case Joost cites? I'm in that |
4 | > position, being a home user of a small network but no registered Internet |
5 | > name. |
6 | > |
7 | |
8 | A self-signed certificate combined with a browser extension that lets |
9 | you "pin" it. With pinning, you can keep your browser usable on the WWW |
10 | while still rejecting any forged certificates for your own hosts. The |
11 | end result works pretty much like SSH keys do. |
Subject | Author |
---|---|
Re: Letsencrypt (was Re: [gentoo-user] app-misc/ca-certificates) | Peter Humphrey <peter@××××××××××××.uk> |
Re: Letsencrypt (was Re: [gentoo-user] app-misc/ca-certificates) | Rich Freeman <rich0@g.o> |