(github.com)

246 points nh2 | 1 comments | 18 Oct 24 06:10 UTC | HN request time: 0.206s | source

Show context

Wowfunhappy ◴[22 Oct 24 12:52 UTC] No.41913728[source]▶

>>41876741 (OP) #

Is there really any benefit of this over just using HTTP?

What is the threat model in which an attacker could MitM your internal network?

replies(5): >>41913783 #>>41913784 #>>41915125 #>>41915370 #>>41915882 #

yjftsjthsd-h ◴[22 Oct 24 16:20 UTC] No.41915882[source]▶

>>41913728 #

Can't any client on the same wifi read your traffic by just putting their wifi card into promiscuous mode? Obviously depends on who uses your wifi and your threat model, but that seems like a problem.

replies(1): >>41918180 #

1. NotPractical ◴[22 Oct 24 20:10 UTC] No.41918180[source]▶

>>41915882 #

Yes, on WPA2. WPA3 introduced per-client encryption keys.

↑

Just want simple TLS for your .internal network?