Comment on CalDAV Server Without Exposing Server?
ClownsInSpace2@lemm.ee 3 days agoThis is the first time I’ve heard of mTLS. Sounds interesting, any tutorial recs?
Comment on CalDAV Server Without Exposing Server?
ClownsInSpace2@lemm.ee 3 days agoThis is the first time I’ve heard of mTLS. Sounds interesting, any tutorial recs?
Selfhoster1728@infosec.pub 3 days ago
Not any in particular but mTLS is essentially just a reverse proxy (like nginx) asking a client for a certificate to be able to access the service behind it.
There are quite a few guides out there, so choose one for your reverse proxy of choice!
suzune@ani.social 3 days ago
So it’s the good old client certificate authentication?
Selfhoster1728@infosec.pub 2 days ago
yep
In my opinion it’s the best solution because there’s a really low attack surface plus it makes it easy to control which device has access to which services.