Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://social.librem.one/users/m0xee/statuses/113105752733492066">m0xEE (m0xee@social.librem.one)'s status on Monday, 09-Sep-2024 22:23:46 JST</a><a href="https://social.librem.one/@m0xee" title="m0xee@social.librem.one"><img src="https://gnusocial.jp/avatar/1172-48-20240912001909.webp" width="48" height="48" alt="m0xEE" style="position: absolute; left: 0; top: 0;">m0xEE</a><div><a href="https://social.fbxl.net/objects/98e51f1b-e971-444c-aba6-e4b9abbf0870" rel="in-reply-to">in reply to</a><ul><li></ul></div></section><article><p><a href="https://social.fbxl.net/users/Hyolobrika">@Hyolobrika</a> <a href="https://social.fbxl.net/users/Hyolobrika">@Hyolobrika</a><br>Self-signed certs do not provide the capability to revoke them. Imagine that a malicious actor isn't just spoofing the site you trust with their own self-signed cert, but that the private key got compromised. With self-signed certs you have no way of telling users that the already trusted certificate is no longer valid, such a capability implies some sort of infrastructure and infrastructure implies hierarchy as someone has to operate it🤷</p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/3635663#notice-7131542">In conversation</a><time datetime="2024-09-09T22:23:46+09:00" title="Monday, 09-Sep-2024 22:23:46 JST">about 10 months ago</time> <span>from <span><a href="https://social.librem.one/@m0xee/113105752733492066" rel="external" title="Sent from social.librem.one via ActivityPub">social.librem.one</a></span></span><a href="https://social.librem.one/@m0xee/113105752733492066">permalink</a></footer></blockquote>

Corresponding Notice

Embed this notice
m0xEE (m0xee@social.librem.one)'s status on Monday, 09-Sep-2024 22:23:46 JSTm0xEE
in reply to
- Hyolobrika
@Hyolobrika @Hyolobrika
Self-signed certs do not provide the capability to revoke them. Imagine that a malicious actor isn't just spoofing the site you trust with their own self-signed cert, but that the private key got compromised. With self-signed certs you have no way of telling users that the already trusted certificate is no longer valid, such a capability implies some sort of infrastructure and infrastructure implies hierarchy as someone has to operate it🤷
In conversationabout 10 months ago from social.librem.onepermalink

Public

Embed Notice

HTML Code

Corresponding Notice