• DynamoSunshirtSandals
    link
    fedilink
    English
    arrow-up
    1
    ·
    23 days ago

    Excellent to have confirmation, thanks. What about the VPN connection handshake? I always assumed it was OK over non-SSL, because the exchange should use signed keys. But that is quite an assumption on my part.

    • Lem453@lemmy.ca
      link
      fedilink
      English
      arrow-up
      2
      ·
      23 days ago

      Wireguard uses public and private keys which are designed from the ground up to be used over plain text to establish the handshake so it isn’t an issue. Same idea with ssh keys and ssl keys

      • DynamoSunshirtSandals
        link
        fedilink
        English
        arrow-up
        1
        ·
        23 days ago

        Thanks. Wild that folks build SSH and HTTP around the same time without realising that HTTP could benefit from some of that same tech!