|
|
|
|
|
|
by pdkl95
3577 days ago
|
|
|
> Because certificates are about identity verification as well as encryption. That's the problem. Why are you deriving trust from a self signed certificate? The UI should be similar to plaintext if there isn't a verifiable chain of trust. There isn't any issue of misplaced trust if you aren't actually labeling the connection as trusted. > Anyone can issue a certificate for any domain No, they can issue a certificate that allows for encrypted communication with the current host. Trusting a self signed certificate for any other purpose would be a serious bug. |
|
|