Hacker News new | ask | show | jobs
by JohnFen 1378 days ago
I don't use self-signed certs for this reason. Instead, I run my own CA to sign my certs.

If you want to use my systems, and want to ensure the certs are correct, you need to get and install a root cert from me personally.
1 comments
hotpotamus 1378 days ago
Well, you run one self-signed cert then.
link
JohnFen 1378 days ago
True, but that's no different than any other root cert. It doesn't really count because it's not a cert that's directly used.
link
hotpotamus 1377 days ago
Yep, the root of trust has to start somewhere.
link