Russia-Ukraine Invasion
Russia-Ukraine Invasion
Out of context: Reply #1133
- Started
- Last post
- 2,626 Responses
- yuekit6
Interesting aspect of the sanctions I hadn't seen...sanctions prevent foreign companies from issuing SSL certificates to Russian websites.
The Russian government was forced to quickly set up their own SSL issuing authority, but the sanctions may also prevent browser makers such as Google from accepting certificates issued by Russia.
So Russian users may eventually all be forced to use local browsers (which currently consists only of Yandex and one other browser) as foreign issued SSL certs gradually expire. It also creates a point of failure where hackers can potentially target the Russian authority and take down every Russian website.
- Why would they do that? You can issue your own SSL certificates very easy with letsencrypt. It's a program you put on your own server that generates...section_014
- a certificate via an authentication process. It doesn't require any third party service to generate a certificate.section_014
- Yeah I'm not sure about the technical details, would Let's Encrypt be suitable for a big e-commerce site? I did notice that on the org's forum they are alsoyuekit
- debating whether or not to cut off Russian users.yuekit
- I can't think of a reason it wouldn't be suitable for a large e-commerce store.section_014