Getting a fake certificate signed requires state level opposition or entities with that level of resources, and frankly if your opposition is state level, you’re fucked anyway.
Self-signed certs let Jimmy-Joe-Bob’s Rifle Range and Real Good Hacker Script Kiddie Ring fake you out in minutes.
Getting a fake certificate signed requires state level opposition or entities with that level of resources
Yeah like I said, if they can hijack your traffic, they can easily get a fake cert signed.
Self-signed certs let Jimmy-Joe-Bob’s Rifle Range and Real Good Hacker Script Kiddie Ring fake you out in minutes.
How? They would have to steal the CA key and could only fake the site with the self signed cert. (At least if you don’t add it to your certificate store)
Because bad actors that can hijack your traffic are unable to get a fake certificate signed?!
How would that be?
Getting a fake certificate signed requires state level opposition or entities with that level of resources, and frankly if your opposition is state level, you’re fucked anyway.
Self-signed certs let Jimmy-Joe-Bob’s Rifle Range and Real Good Hacker Script Kiddie Ring fake you out in minutes.
Yeah like I said, if they can hijack your traffic, they can easily get a fake cert signed.
How? They would have to steal the CA key and could only fake the site with the self signed cert. (At least if you don’t add it to your certificate store)