Emma (IPG) :apartyblobcat: on Nostr: there should be some way to securely set a website (on regular HTTPS, with regular ...
there should be some way to securely set a website (on regular HTTPS, with regular DNS) to use a trust-on-first-use certificate authority rather than relying on a centralised authority
i would be heavily concerned about the MITM concerns or lock-in concerns of either of the ways i can think of to implement this
or the risk of a sysadmin losing their CA and all subsequent returning visitors, without warning, seeing a "this certificate can't be trusted" warning (if this happens frequently enough, you get prompt fatigue)
i would be heavily concerned about the MITM concerns or lock-in concerns of either of the ways i can think of to implement this
or the risk of a sysadmin losing their CA and all subsequent returning visitors, without warning, seeing a "this certificate can't be trusted" warning (if this happens frequently enough, you get prompt fatigue)