<![CDATA[TLS and SSH rely on Certificate Authorities (CAs) for authentication, but they also present a vector for Man in the Middle attacks.]]>TLS and SSH rely on Certificate Authorities (CAs) for authentication, but they also present a vector for Man in the Middle attacks. What if you could set up your own CA to reduce your exposure?

➡https://fedoramagazine.org/make-a-private-ca-with-step-ca/

]]>https://board.circlewithadot.net/topic/ecfe4dc5-5469-45ec-b940-6f7ee3c090f9/tls-and-ssh-rely-on-certificate-authorities-cas-for-authentication-but-they-also-present-a-vector-for-man-in-the-middle-attacks.RSS for NodeThu, 30 Apr 2026 21:51:58 GMTWed, 01 Apr 2026 14:46:15 GMT60<![CDATA[Reply to TLS and SSH rely on Certificate Authorities (CAs) for authentication, but they also present a vector for Man in the Middle attacks. on Wed, 01 Apr 2026 15:17:07 GMT]]>@ben @fedora It is possible to do so but this is not the default at least on Debian/Ubuntu based distros. Is this different in Fedora?

]]>https://board.circlewithadot.net/post/https://karlsruhe-social.de/users/giggls/statuses/116330111167878864https://board.circlewithadot.net/post/https://karlsruhe-social.de/users/giggls/statuses/116330111167878864Wed, 01 Apr 2026 15:17:07 GMT<![CDATA[Reply to TLS and SSH rely on Certificate Authorities (CAs) for authentication, but they also present a vector for Man in the Middle attacks. on Wed, 01 Apr 2026 15:12:20 GMT]]>can use CAs for SSH, e.g. https://www.lorier.net/docs/ssh-ca.html

CC: @fedora@fosstodon.org
]]>https://board.circlewithadot.net/post/https://snac.benbuhse.com/ben/p/1775056340.321972https://board.circlewithadot.net/post/https://snac.benbuhse.com/ben/p/1775056340.321972Wed, 01 Apr 2026 15:12:20 GMT<![CDATA[Reply to TLS and SSH rely on Certificate Authorities (CAs) for authentication, but they also present a vector for Man in the Middle attacks. on Wed, 01 Apr 2026 14:51:35 GMT]]>@fedora Huh? ssh does not use CAs it uses a known_hosts file.

]]>https://board.circlewithadot.net/post/https://karlsruhe-social.de/users/giggls/statuses/116330010716836792https://board.circlewithadot.net/post/https://karlsruhe-social.de/users/giggls/statuses/116330010716836792Wed, 01 Apr 2026 14:51:35 GMT