Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Cloudflare's free plan has SSL now, which a 10 year could utilize. While that opens up a potential MITM attack, I don't believe it's worse than having no SSL at all (others argue it is, on the premise that it creates a false sense of security).


Amateur web development shouldn't depend on having an account with a 3rd party service which can arbitrarily decide whether or not to sign your cert.


Well you still depend on 3rd parties to register a domain. And one to provide a connection, if not a server.


/etc/hosts

when I was experimenting with computers I had a WAMP executable on my LAN.

less parties involved the better.


Localhost will not be restricted. If you're making people edit their hosts file you can make them bypass any security warnings.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: