coates’s avatarcoates’s Twitter Archive—№ 24,025

  1. You host your whole stack (storage, DNS, compute, load balancing, etc.) on a single provider (AWS, Digital Ocean, Azure, etc.). Do you have to implicitly trust this provider, or does your SSL/TLS certificate protect you (assuming you did HTTPS right) from spying on your traffic?
    On twitter.com Twitter logo coates’s avatar ❤️ 1 Favorite Mood +2 🙂
    1. …in reply to @coates
      Follow up to this… what's riskier, from a traffic-spying threat model: trusting a provider with TLS/SSL certificates (private keys), or trusting a provider with DNS?
      Permalink On twitter.com Twitter logo coates’s avatar Mood -2 🙁