Comment by 🧇 Acidus

Re: "New "Certificate and Key Validator" service to Kennedy"
In: s/Geminispace

@jmjl That's a neat idea. I'm not too familiar with TLSA, DNSSEC, and DANE, but this is a chance to dig into them

🧇 Acidus [OP]

2023-12-30 · 2 years ago

Original Post

🌒 s/Geminispace

New "Certificate and Key Validator" service to Kennedy — I added a "Certificate and Key Validator" service to Kennedy. This helps you figure out if a certificate/key change on a capsule is from a innocent change by the capsule owner, or a possible MITM attempt. Read me here: [gemini link] If I ever build a Gemin client, I would probably build something like this into it. (with a perference to disable). As in, if you access a capsule and it's cert/key is different, my client would check with...

💬 Acidus · 4 comments · 1 like · 2023-12-28 · 2 years ago