this post was submitted on 15 Apr 2025
1 points (100.0% liked)

HomeNetworking, community based networking help

8 readers
1 users here now

HomeNetworking is a place where anyone can ask for help with their home or small office network. No question is too small, but please be sure to...

founded 2 years ago
MODERATORS
[email protected]
1
Follow up to my "Private DNS + SSL" post (zerobytes.monster)
submitted 2 days ago by [email protected] to c/[email protected]
0 comments fedilink hide all child comments
 
The original post: /r/homenetworking by /u/guy-from-1977 on 2025-04-15 05:19:43.

Okay so... Hypothetically lets say I do the following.

  1. buy a domain (a.domain)

  2. buy a * SSL cert from ssl.com for *.a.domain

  3. in a public DNS point test.a.domain to 192.168.0.1

  4. make a pubic website on www.a.domain and allow anyone to download and use the SSL cert.

I did a quick read of SSL.com's TOS and there is nothing in there that prevents me from posting the cert for public download.

How could that be abused, if at all?

It would let anyone use the test.a.domain or really any *.a.domain on their home network with SSL in a public CA. It would let them run their own private DNS for a.domain and use the cert for any internal use...

no comments (yet)
sorted by: hot top controversial new old
there doesn't seem to be anything here