💾 Archived View for rawtext.club › ~sloum › geminilist › 001163.gmi captured on 2020-10-31 at 02:05:29. Gemini links have been rewritten to link to archived content
⬅️ Previous capture (2020-09-24)
-=-=-=-=-=-=-
Jason McBrayer jmcbray at carcosa.net
Fri May 29 15:08:04 BST 2020
- - - - - - - - - - - - - - - - - - -
southerntofu at thunix.net writes:
Using DANE to distribute certificates reduces the attack surface, because the
DNS is already a SPOF for a gemini server. I personally believe the gemini spec
should strongly encourage admins to use DANE to distribute their server
certificates.
Could you provide a minimal sample implementation of how a client wouldimplement this? Just to demonstrate feasibility and to provide a guideto other client authors?
-- +-----------------------------------------------------------+ | Jason F. McBrayer jmcbray at carcosa.net | | If someone conquers a thousand times a thousand others in | | battle, and someone else conquers himself, the latter one | | is the greatest of all conquerors. --- The Dhammapada |