[Cryptech Tech] The cert for cryptech.is

Rob Austein sra at hactrn.net
Sat Mar 29 22:43:14 UTC 2014


At Sat, 29 Mar 2014 22:41:41 +0100, Leif Johansson wrote:
> > 29 mar 2014 kl. 21:48 skrev "Michael Richardson" <mcr at sandelman.ca>:
> > 
> > Suggestion: have a regular page at cryptotech.is, which has a StartSSL
> > certificate, but put no write-able/important content, and put the trac on
> > another IPv6/port/name, and use the cryptotech.is CA/DANE for stuff that
> > requires members.
> 
> This makes a certain amount of sense to me - separate marketing and theatre from key content.

Yes.  Trac probably isn't the right tool for marketing content anyway.

> > Maybe an apache proxy-pass on the "public" site which gives access
> > to readonly the wiki.

I need to think about the mechanics and configuration details, but the
overall approach sounds plausible if the configuration involved
doesn't turn out to be too complicated.



More information about the Tech mailing list