WingNews logo WingNews
top | item 31346068

(no title)

y4mi | 3 years ago

> I prefer to rely on a proxy to perform TLS instead of the browser.

That's one step forward and about 30 steps backwards if you're actually doing that for security. Proxies silently accept broken TLS configuration all the time and serve then to you as https secured. You're unlikely to encounter invalid https configurations nowadays, so you likely won't ever notice, but it's definitely less secure to break the TLS connection in the proxy

discuss

order

zzo38computer|3 years ago

> Proxies silently accept broken TLS configuration all the time

I don't want the browser to enforce TLS configuration; the proxy could be configurable to set it how I want it to accept or not accept broken TLS configurations.

1vuio0pswjnm7|3 years ago

Would be interested to see a list of those "about 30" steps. Surely, the number is neither made-up nor arbitrary.