Conversation

Notices

1. Embed this notice
   Jesse 🇫🇷 (jessew@mk.cpluspatch.com)'s status on Saturday, 17-May-2025 22:56:15 JST Jesse 🇫🇷

   this list of "security features" is hilarious
   
   "Enfocing HTTPS" in 2025 😭
   
   RE: https://grapheneos.social/users/GrapheneOS/statuses/114523490377057315

   • Embed this notice
     Jesse 🇫🇷 (jessew@mk.cpluspatch.com)'s status on Saturday, 17-May-2025 23:34:04 JST Jesse 🇫🇷

     in reply to

     • :bun: Stellar (not lewd)

     @Stellar@mk.absturztau.be yeah this is normal
     
     .dev is on the forced HTTPS TLD list, as with a bunch of other TLDs
     
     kinda neat

   • Embed this notice
     :bun: Stellar (not lewd) (stellar@mk.absturztau.be)'s status on Saturday, 17-May-2025 23:34:06 JST :bun: Stellar (not lewd)

     in reply to

     @jessew@mk.cpluspatch.com i bought a .dev domain without knowing it was from google.
     it has the quirk that non-ssl does not work in any way.

   • Embed this notice
     :bun: Stellar (not lewd) (stellar@mk.absturztau.be)'s status on Saturday, 17-May-2025 23:41:52 JST :bun: Stellar (not lewd)

     in reply to

     @jessew@mk.cpluspatch.com :neocat_tungsten:

     Jesse 🇫🇷 likes this.
   • Embed this notice
     Jesse 🇫🇷 (jessew@mk.cpluspatch.com)'s status on Saturday, 17-May-2025 23:42:38 JST Jesse 🇫🇷

     in reply to

     • :bun: Stellar (not lewd)
     • kimapr

     @kimapr@ublog.kimapr.net @Stellar@mk.absturztau.be forgetting to renew a tls cert in 2025 is crazy
     
     are you... manually fetching certificates?? are you okay?? 😭

   • Embed this notice
     kimapr (kimapr@ublog.kimapr.net)'s status on Saturday, 17-May-2025 23:42:40 JST kimapr

     in reply to

     • :bun: Stellar (not lewd)

     @jessew @Stellar it’s not just forced TLS, it’s HSTS, also known as CRINGE

     The standard says that if the cert is invalid (like if it has expired because the website operator is an eepy princess) a conforming user-agent must strip the user of their ability to bypass the security warning and go to the site anyway. And browsers do implement this and i HATE IT!! TOTAL HSTS DEATH

   • Embed this notice
     Jesse 🇫🇷 (jessew@mk.cpluspatch.com)'s status on Saturday, 17-May-2025 23:44:39 JST Jesse 🇫🇷

     in reply to

     • :bun: Stellar (not lewd)
     • kimapr

     @kimapr@ublog.kimapr.net @Stellar@mk.absturztau.be at this point it's almost harder to do it manually 😭

   • Embed this notice
     kimapr (kimapr@ublog.kimapr.net)'s status on Saturday, 17-May-2025 23:44:41 JST kimapr

     in reply to

     • :bun: Stellar (not lewd)

     @jessew @Stellar people still do it and they will keep doing it in 2177

   • Embed this notice
     Jesse 🇫🇷 (jessew@mk.cpluspatch.com)'s status on Saturday, 17-May-2025 23:45:53 JST Jesse 🇫🇷

     in reply to

     • :bun: Stellar (not lewd)
     • kimapr

     @kimapr@ublog.kimapr.net @Stellar@mk.absturztau.be not using certbot or whatever your reverse proxy's automatic tls thing is

   • Embed this notice
     kimapr (kimapr@ublog.kimapr.net)'s status on Saturday, 17-May-2025 23:45:55 JST kimapr

     in reply to

     • :bun: Stellar (not lewd)

     @jessew @Stellar what did you mean by manually fetching certificates?

   • Embed this notice
     Jesse 🇫🇷 (jessew@mk.cpluspatch.com)'s status on Saturday, 17-May-2025 23:47:12 JST Jesse 🇫🇷

     in reply to

     • :bun: Stellar (not lewd)
     • kimapr

     @kimapr@ublog.kimapr.net @Stellar@mk.absturztau.be then set a damn cronjob/systemd timer, woman! it takes a few minutes!

   • Embed this notice
     kimapr (kimapr@ublog.kimapr.net)'s status on Saturday, 17-May-2025 23:47:13 JST kimapr

     in reply to

     • :bun: Stellar (not lewd)
     • kimapr

     @jessew @Stellar But i invoke it myself instead of doing a cronjob

   • Embed this notice
     kimapr (kimapr@ublog.kimapr.net)'s status on Saturday, 17-May-2025 23:47:15 JST kimapr

     in reply to

     • :bun: Stellar (not lewd)

     @jessew @Stellar I use certbot

   • Embed this notice
     Jesse 🇫🇷 (jessew@mk.cpluspatch.com)'s status on Saturday, 17-May-2025 23:47:27 JST Jesse 🇫🇷

     in reply to

     • :bun: Stellar (not lewd)
     • kimapr

     @Stellar@mk.absturztau.be @kimapr@ublog.kimapr.net set a systemd timer

   • Embed this notice
     :bun: Stellar (not lewd) (stellar@mk.absturztau.be)'s status on Saturday, 17-May-2025 23:47:28 JST :bun: Stellar (not lewd)

     in reply to

     • kimapr

     @jessew@mk.cpluspatch.com @kimapr@ublog.kimapr.net i do it because idk how to automate certbot :bugcatsob:

   • Embed this notice
     Jesse 🇫🇷 (jessew@mk.cpluspatch.com)'s status on Saturday, 17-May-2025 23:47:48 JST Jesse 🇫🇷

     in reply to

     • :bun: Stellar (not lewd)
     • kimapr

     @Stellar@mk.absturztau.be @kimapr@ublog.kimapr.net or a cronjob if you're old and hate new things

   • Embed this notice
     Jesse 🇫🇷 (jessew@mk.cpluspatch.com)'s status on Saturday, 17-May-2025 23:49:44 JST Jesse 🇫🇷

     in reply to

     • :bun: Stellar (not lewd)
     • kimapr

     @kimapr@ublog.kimapr.net @Stellar@mk.absturztau.be you are hereby banned from complaining about HSTS

   • Embed this notice
     kimapr (kimapr@ublog.kimapr.net)'s status on Saturday, 17-May-2025 23:49:46 JST kimapr

     in reply to

     • :bun: Stellar (not lewd)

     @jessew @Stellar Too laziggy

     Billions must expire