undefined | Better HN

0 pointsjacquesm1mo ago0 comments

You're joking, but still: that's one very possible outcome of both requiring centrally issued certificates for security reasons and browsers refusing to display websites without.

Effectively certificates are now a license to publish.

0 comments

devsda1mo ago

On a PC we atleast have an out.

On mobile, user certs are pretty much ignored unless opted in by apps. Even firefox allows user certs (for now) but only via an obscure hidden config.

This means we cannot use self-hosted services even using a VPN with official apps without getting a signed cert.

dns_snek1mo ago

> This means we cannot use self-hosted services even using a VPN with official apps without getting a signed cert.

What do you mean by this? Any service that is designed to be self-hosted will have an app that accepts user-installed CAs. HomeAssistant, for example.

j / k navigate · click thread line to collapse