Sort of. That doesn't help if they're doing DoH and you're unwilling to MitM all... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		EvanAnderson 11 months ago \| parent \| context \| favorite \| on: Just want simple TLS for your .internal network? Sort of. That doesn't help if they're doing DoH and you're unwilling to MitM all the SSL (and, if you are, then you have to worry they've pinned certs).

mannyv 11 months ago [–]

Luckily DoH doesn't seem to be implemented by devices yet. And I could do MtM, because most devices don't really seem to verify their tls certs.

One day they will do both, but that day is probably far away.

And they are on my network, so if they don't function without their own DNS that's OK by me.

Consider applying for YC's Winter 2026 batch! Applications are open till Nov 10
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact