💾 Archived View for gemi.dev › gemini-mailing-list › 000514.gmi captured on 2024-08-19 at 00:59:56. Gemini links have been rewritten to link to archived content
⬅️ Previous capture (2023-12-28)
-=-=-=-=-=-=-
Hello, I'm new to gemini and I was looking to host my gemini server behind i2p (or as a Tor hidden service, that would work the same). I wrote a server that doesn't do TLS but uses a relayd daemon in front of it to take care about TLS the right way. I've read that TLS is mandatory, the only configuration I can imagine for gemini over i2p/tor would be to expose my relayd over these networks, but then the TLS hostname won't match the hostname in the URI. I'm not even sure this would work for all clients. Is there a solution for this or am I supposed to accept non matching certificates for this use case? Regards Sol?ne
> > but then the TLS hostname won't match the hostname in the URI > Gemini uses TOFU (Trust on First Use) with self signed certs for TLS, so you can make a TLS cert for your onion/i2p name. -- ? <https://www.google.com/teapot> -------------- next part -------------- An HTML attachment was scrubbed... URL: <https://lists.orbitalfox.eu/archives/gemini/attachments/20201130/3f9b 908c/attachment.htm>
---