this post was submitted on 10 Jun 2023
4 points (100.0% liked)

/c/cybersecurity - Cybersecurity News & Discussion

2090 readers
4 users here now

A community for technical news and discussion of cybersecurity and closely related topics.

founded 4 years ago
MODERATORS
[email protected]
4
Improving HTTPS on private networks (alexsci.com)
submitted 1 year ago by [email protected] to c/[email protected]
4 comments fedilink hide all child comments
top 3 comments
sorted by: hot top controversial new old
[–] [email protected] 1 points 1 year ago (1 children)

Will that specified domain be routed internally by default?

[–] [email protected] 1 points 1 year ago (1 children)

Yes, there's two approaches I'm using currently. When you register a subdomain you can choose either localhostcert.net or localcert.net. The former has an A record in the public DNS that points to 127.0.0.1. The latter has no public A records so you need to manage them yourself, possibly with a local DNS resolver like unbound.

[–] [email protected] 2 points 1 year ago* (last edited 1 year ago)

Why (for what use cases) would one use the former? Browsers solve this by treating localhost as a secure context (i.e. no mixed content warnings etc.) even if you use plain http.

load more comments
view more: next ›