←back to thread

Go-Safeweb

(github.com)
188 points jcbhmr | 3 comments | | HN request time: 0s | source
Show context
pushupentry1219 ◴[] No.42133267[source]
Not sure how I feel about the HTTPS/TLS related bits. These days anything I write in Go uses plain HTTP, and the TLS is done by a reverse proxy of some variety that does some other stuff with the traffic too including security headers, routing for different paths to different services, etc. I never run a go web application "bare", public facing, and manually supplying cert files.
replies(6): >>42133422 #>>42133588 #>>42133628 #>>42134049 #>>42134283 #>>42135953 #
1. effdee ◴[] No.42133628[source]
The phrase "SSL added and removed here" from an NSA slide comes to mind.
replies(1): >>42135090 #
2. pushupentry1219 ◴[] No.42135090[source]
To be clear I meant something like Caddy, or nginx not a solution like cloudflare or GCP doing my TLS
replies(1): >>42135498 #
3. arccy ◴[] No.42135498[source]
once you outgrow a single machine, unsecured network connections become an issue again