Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://pkteerium.xyz/objects/8b0d82ce-0ac9-485a-b35a-fb3e60949800">FourOh-LLC (fouroh-llc@pkteerium.xyz)'s status on Tuesday, 20-Feb-2024 21:56:15 JST</a><a href="https://pkteerium.xyz/users/FourOh-LLC" title="fouroh-llc@pkteerium.xyz"><img src="https://gnusocial.jp/avatar/5352-48-20230520195533.webp" width="48" height="48" alt="FourOh-LLC" style="position: absolute; left: 0; top: 0;">FourOh-LLC</a><div><a href="https://noauthority.social/@istvan/111959373576979923" rel="in-reply-to">in reply to</a><ul><li><li><a href="https://gnusocial.jp/user/233068" title="istvan@noauthority.social">dobó istván</a></li></ul></div></section><article>You cannot create your own SSL certificate and expect it to work on the internet in the browser.<br><br>There was an effort once called the DANE but it failed so we have Let's Encrypt instead, which works well-enough.<br><br>Blockchains are slowly transferring us away from all the nightmare of DNS and SSL all that crap, so don't expect a lot of new RFCs that will allow your self-issued (not self-signed) certificates to evolve.<br><br><a href="https://en.wikipedia.org/wiki/Self-signed_certificate">https://en.wikipedia.org/wiki/Self-signed_certificate</a></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/2740067#notice-5433844">In conversation</a><time datetime="2024-02-20T21:56:15+09:00" title="Tuesday, 20-Feb-2024 21:56:15 JST">about 9 months ago</time> <span>from <span><a href="https://pkteerium.xyz/objects/8b0d82ce-0ac9-485a-b35a-fb3e60949800" rel="external" title="Sent from pkteerium.xyz via ActivityPub">pkteerium.xyz</a></span></span><a href="https://pkteerium.xyz/objects/8b0d82ce-0ac9-485a-b35a-fb3e60949800">permalink</a><h4>Attachments</h4><ol><li><article><header><div>No result found on File_thumbnail lookup.</div><h5><a href="https://en.wikipedia.org/wiki/Self-signed_certificate">Self-signed certificate</a></h5><div></div></header><div>In cryptography and computer security, self-signed certificates are public key certificates that are not issued by a certificate authority (CA). These self-signed certificates are easy to make and do not cost money. However, they do not provide any trust value. 
For instance, if a website owner uses a self-signed certificate to provide HTTPS services, people who visit that website cannot be certain that they are connected to their intended destination. For all they know, a malicious third-party could be redirecting the connection using another self-signed certificate bearing the same holder name. The connection is still encrypted, but does not necessarily lead to its intended target. In comparison, a certificate signed by a trusted CA prevents this attack because the user's web browser separately validates the certificate against the issuing CA. The attacker's certificate fails this validation.Benefits
Self-signed certificates can be created for free, using a wide variety of tools including OpenSSL, Java's keytool, Adobe Reader, wolfSSL and Apple's Keychain. They are easy to customize; e.g, they can have larger key...</div><footer></footer></article></li></ol></footer></blockquote>

Corresponding Notice

Embed this notice
FourOh-LLC (fouroh-llc@pkteerium.xyz)'s status on Tuesday, 20-Feb-2024 21:56:15 JSTFourOh-LLC
in reply to
- matrix07012 :thotpatrol: :cunnyEmpire:
- dobó istván
You cannot create your own SSL certificate and expect it to work on the internet in the browser.

There was an effort once called the DANE but it failed so we have Let's Encrypt instead, which works well-enough.

Blockchains are slowly transferring us away from all the nightmare of DNS and SSL all that crap, so don't expect a lot of new RFCs that will allow your self-issued (not self-signed) certificates to evolve.

https://en.wikipedia.org/wiki/Self-signed_certificate
In conversationabout 9 months ago from pkteerium.xyzpermalink
Attachments
1. No result found on File_thumbnail lookup.
  Self-signed certificate
  In cryptography and computer security, self-signed certificates are public key certificates that are not issued by a certificate authority (CA). These self-signed certificates are easy to make and do not cost money. However, they do not provide any trust value. For instance, if a website owner uses a self-signed certificate to provide HTTPS services, people who visit that website cannot be certain that they are connected to their intended destination. For all they know, a malicious third-party could be redirecting the connection using another self-signed certificate bearing the same holder name. The connection is still encrypted, but does not necessarily lead to its intended target. In comparison, a certificate signed by a trusted CA prevents this attack because the user's web browser separately validates the certificate against the issuing CA. The attacker's certificate fails this validation. Benefits Self-signed certificates can be created for free, using a wide variety of tools including OpenSSL, Java's keytool, Adobe Reader, wolfSSL and Apple's Keychain. They are easy to customize; e.g, they can have larger key...

Public

Embed Notice

HTML Code

Corresponding Notice