(inclouds.space)

301 points todsacerdoti | 1 comments | 10 Apr 25 14:19 UTC | HN request time: 0.212s | source

Show context

mohsen1 ◴[10 Apr 25 14:49 UTC] No.43644362[source]▶

Avoid using `.local`. In my experience Chrome does not like it with HTTPS. It takes much much longer to resolve. I found a Chrome bug relating to this but do not have it handy to share. `.localhost` makes more sense for local development anyways.

replies(8): >>43644412 #>>43644418 #>>43644420 #>>43644480 #>>43644481 #>>43644511 #>>43644548 #>>43646934 #

Pxtl ◴[10 Apr 25 15:02 UTC] No.43644548[source]▶

>>43644362 #

Honestly, if I had my druthers there would be a standardized exception for .local domains that self-signed HTTPS certs would be accepted without known roots. It's insane how there's no good workflow for HTTPS on LAN-only services.

replies(2): >>43644623 #>>43644673 #

Spooky23 ◴[10 Apr 25 15:09 UTC] No.43644623[source]▶

>>43644548 #

It’s actually gotten worse, you need to run a CA or use a public domain where it’s easy to get your internal naming schemes in a transparency log.

replies(1): >>43644769 #

1. jeroenhd ◴[10 Apr 25 15:19 UTC] No.43644769[source]▶

>>43644623 #

The easy workaround I've seen companies use for that is by using a basic wildcard certificate (*.local.mydomain.biz).

↑

.localhost Domains