• Fal@yiffit.net
    link
    fedilink
    English
    arrow-up
    3
    arrow-down
    9
    ·
    1 year ago

    Self signed certs are more secure. You don’t have to trust the whole CA chain

      • Fal@yiffit.net
        link
        fedilink
        English
        arrow-up
        2
        arrow-down
        3
        ·
        1 year ago

        but they fix a lot more problems than they cause

        I didn’t say anything that disagrees with this. CAs are nice and convenient. They do this by expanding the chain of trust to a lot more people, hence making them less secure.

        Sure if you can’t securely manage your cert, that’s a problem. But that doesn’t mean let’s less secure