Hacker News with Generative AI: HTTPS

HTTPS RR in Curl (haxx.se)
RFC 9460 describes a DNS Resource Record (RR) named HTTPS. To highlight that it is exactly this DNS record called HTTPS we speak of, we try to always call it HTTPS RR using both words next to each other.
HTTPS, DNS, Security, Networking
58 points by TangerineDream 26 days ago | 12 comments
HTTPS-only for Cloudflare APIs: shutting the door on cleartext traffic (cloudflare.com)
Today we’re announcing that we’re closing all of the HTTP ports on api.cloudflare.com.
Security, Cloudflare, API, Web Development, HTTPS
16 points by tech234a 36 days ago | 6 comments
How to distrust a CA without any certificate errors (dadrian.io)
A “distrust” is when a certification authority (CA) that issues HTTPS certificates to websites is removed from a root store because it is no longer trusted to issue certificates.
Security, HTTPS, Cybersecurity, Digital Certificates, Trust
173 points by tptacek 50 days ago | 93 comments
We Issued Our First Six Day Cert (letsencrypt.org)
Earlier this year we announced our intention to introduce short-lived certificates with lifetimes of six days as an option for our subscribers. Yesterday we issued our first short-lived certificate.
Security, Certificates, HTTPS, Let's Encrypt, Web Development
7 points by wapasta 64 days ago | 1 comments
Caddy – The Ultimate Server with Automatic HTTPS (caddyserver.com)
The Ultimate Server makes your sites more secure, more reliable, and more scalable than any other solution.
Web Servers, Security, HTTPS, Software
568 points by huang_chung 69 days ago | 227 comments
The Internet's Time Is Flawed–Why No One Is Talking About It (ycombinator.com)
I’ve been researching how online time services sync over HTTPS, and the results are surprising.
Internet Time, Timekeeping, Technology, HTTPS
10 points by Shellgroup 70 days ago | 26 comments
Practical HTTPS Interception: 20 Years of SSL/TLS Interception (thc.org)
TL;DR: An attacker can trick Let's Encrypt (LE) to issue new TLS certificates for any domain that the attacker intercepts traffic for. The attacker can then decrypt the TLS traffic. This one thing that TLS is supposed to prevent from happening. The fault is that LE uses cleartext HTTP to verify the ACME-challenge (which the attacker can intercept).
Security, HTTPS, TLS, Certificates, Hacking
4 points by ementally 82 days ago | 0 comments
Ten Years as a Free, Open, and Automated Certificate Authority (fosdem.org)
People deserve a secure and privacy-respecting Internet. Ubiquitous HTTPS is an essential part of delivering on that vision. To that end, our public benefit certificate authority has been issuing TLS certificates free of cost in a reliable, automated, and trustworthy manner for ten years. We went from issuing our first certificate in 2015 to servicing over 500,000,000 websites in 2025, and we’ve got big plans for the future.
Security, Open Source, Certificates, HTTPS, Internet
32 points by udev4096 83 days ago | 2 comments
Caddy Ninja – Setup an HTTPS-Enabled Web Server with Caddy on Alpine Linux (caddy.ninja)
Setup an HTTPS-enabled web server with Caddy on Alpine Linux
Web Servers, Linux, Security, HTTPS, Caddy
7 points by todsacerdoti 132 days ago | 0 comments
Curl -v HTTPS://Google.com (youtube.com)
Curl, HTTPS, Web Development
23 points by jf 171 days ago | 2 comments
Curl -v HTTPS://google.com [video] (youtube.com)
Curl, HTTPS, Video Tutorials, Networking Tools
7 points by samber 172 days ago | 1 comments
How to Make HTTPS Verifiable (reclaimprotocol.org)
Reclaim Protocol solves this by allowing users to generate cryptographic proofs of data exchanged over HTTPS connections, making the data on their screen verifiable and shareable.
Security, HTTPS, Cryptography, Privacy
26 points by madhavanmalolan 222 days ago | 25 comments
History of HTTPS Usage (jefftk.com)
HTTPS, Security, Web Development, History
60 points by wpapper 260 days ago | 26 comments
API Shouldn't Redirect HTTP to HTTPS (jviide.iki.fi)
API, Security, HTTP, HTTPS
670 points by oherrala 333 days ago | 303 comments