|
|
|
|
|
|
by kernelPan1c
3081 days ago
|
|
|
Yes, since you can't trust the JS, doing this would be an attempt at security through obfuscation. I mostly just think it's strange that these keys aren't accessible. If there were ever a mismatch detected, the server could at least know with certainty that there's a bad actor on the connection. Thanks for Zooko's Traingle wiki. Hadn't seen that one before. |
|
|