|
|
|
|
|
|
by TZubiri
468 days ago
|
|
|
>It's not encrypted in transit Agree. But who said that all passwords or shiboleths should all be encrypted in transit? It can serve as a canary for someone snooping your traffic. Even if you encrypt it, you don't want people snooping. To date of my subdomains that I never publish, I haven't had anyone attempting to connect with them. It's one of those redundant measures. And it's also one of those risks that you take, you can maximize security by staying at home all day, but going out to take the trash is a calculated risk that you must take or risk overfocusing on security. It's similar to port knocking. If you are encrypting it, it's counterproductive, it's a low effort finishing touch, like a nice knot. |
|
|