alt Hacker NewsYou do realize self-signed certs are useless, could have been tampered with, and could have just as easily been created by a malicious actor?
There's a reason most default self signed certs are called "snake oil".
You do realize self-signed certs are useless, could have been tampered with, and could have just as easily been created by a malicious actor?
There's a reason most default self signed certs are called "snake oil".
You can pre-share the certificate out of band, or set up your browser to TOFU like SSH does. Then they are not useless and may be superior to PKI for certain threat models.