29
submitted 9 months ago by thehatfox@lemmy.world to c/sysadmin@lemmy.world
you are viewing a single comment's thread
view the rest of the comments
[-] jlh@lemmy.jlh.name 9 points 9 months ago

I just use a subdomain of my main domain and use dns validation of let's encrypt.

[-] possiblylinux127@lemmy.zip 4 points 9 months ago

That requires outside authentication though. I think it would be cool to incorporate some SSL into dhcp

[-] nbailey@lemmy.ca 4 points 9 months ago

That will never happen. SSL is based on trust, and the trust root will never blindly delegate to whatever happens in random LANs. Subdomain is 100% the right approach for internal network.

[-] duplexsystem@lemmy.blahaj.zone 0 points 9 months ago* (last edited 9 months ago)

It can and has already happened. You can make your own root ca. Internal domains need internal root cas. Is it a pia to setup yes. Do I have it installed on my unrooted android phone and linux computers? Yes.

Edit: I didn't see the dhcp part. But you can still make your own root ca

[-] superbirra@lemmy.world 0 points 9 months ago

op was obviously referring to public root CAs

[-] duplexsystem@lemmy.blahaj.zone 1 points 9 months ago
[-] superbirra@lemmy.world 1 points 9 months ago* (last edited 9 months ago)

and IT'S OK, we don't want you to burn out

[-] duplexsystem@lemmy.blahaj.zone 1 points 9 months ago

I'm already burnt out. Womp womp

[-] superbirra@lemmy.world 1 points 9 months ago
[-] duplexsystem@lemmy.blahaj.zone 2 points 9 months ago

Rare here but I'll try and find one

[-] Fontasia@feddit.nl 2 points 9 months ago

The maintainers of DHCP can't even be bothered standardising a query to check if an address is currently in use, doubt they could take on being a CA at the same time

this post was submitted on 29 Jan 2024
29 points (100.0% liked)

Sysadmin

7679 readers
17 users here now

A community dedicated to the profession of IT Systems Administration

No generic Lemmy issue posts please! Posts about Lemmy belong in one of these communities:
!lemmy@lemmy.ml
!lemmyworld@lemmy.world
!lemmy_support@lemmy.ml
!support@lemmy.world

founded 1 year ago
MODERATORS