caps, swearing, #tlsmastery, :flan_dance:
@mwlucas in your section on being your own CA, are you covering openssl native commands? what about multi-level/intermediate CAs and setting CA path length maximums? I ask since I recently had to integrate a system that wanted to be its own CA, and I was like 'nah, I already got a CA' so I delegated it a sub CA with restrictions.
(yes, I have an overly complex home network)
re: caps, swearing, #tlsmastery,
@david Yep! been there, done that, recommended against "openssl ca" like the man page says.