TLS certificate sizes in Geminispace

Jason McBrayer jmcbray at carcosa.net
Fri Jun 26 15:30:44 BST 2020

Previous message (by thread): TLS certificate sizes in Geminispace
Next message (by thread): TLS certificate sizes in Geminispace
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

solderpunk <solderpunk at SDF.ORG> writes:

> cozylabs.eu achieves this feat with a single self-signed ED25519
> certificate. For folks who want to ditch the CA system and embrace
> TOFU, this is clearly the way to do it. I will migrate
> gemini.circumlunar.space to this style of certificate in the near
> future.

I would like to do this for my server, but I'm concerned about changing
the certificate when there are people actually using TOFU. Do we have a
best practice note on changing certificates?

-- 
+-----------------------------------------------------------+
| Jason F. McBrayer                    jmcbray at carcosa.net  |
| A flower falls, even though we love it; and a weed grows, |
| even though we do not love it.            -- Dogen        |

Previous message (by thread): TLS certificate sizes in Geminispace
Next message (by thread): TLS certificate sizes in Geminispace
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Gemini mailing list