this post was submitted on 05 Apr 2024
277 points (86.4% liked)
Technology
59436 readers
3020 users here now
This is a most excellent place for technology news and articles.
Our Rules
- Follow the lemmy.world rules.
- Only tech related content.
- Be excellent to each another!
- Mod approved content bots can post up to 10 articles per day.
- Threads asking for personal tech support may be deleted.
- Politics threads may be removed.
- No memes allowed as posts, OK to post as comments.
- Only approved bots from the list below, to ask if your bot can be added please contact us.
- Check for duplicates before posting, duplicates may be removed
Approved Bots
founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
Expose your subdomains as in having all of them bundled into one certificate?
AFAIK, you absolutely can request different certs for each subdomain (in fact, that's what I've been doing for a while).
No, as in they are public record.
If you use a wildcard let's encrypt SSL to encrypt www.mydomain.com and VPS.mydomain.com and secret.mydomain.com and allmyporn.mydomain.com, and Plex.mydomain.com, and gitlab.mydomain.com
Then it is public record that mydomain.com has associated with it the CNAMES "www" "VPS" "secret" "allmyporn" "Plex" and "gitlab".
It can be looked up by anyone here. Just type in "%.yourdomain"
That is to say if you use a wildcard letsencrypt SSL on all your subdomains for you self hosting project, you're more exposed than want to be.
No it's not. I have several wildcards. Your tool doesn't show any of the subdomains i have then used on. Go hit %.saik0.com and show me where lemmy.saik0.com shows up. I'll wait.
Bro check again... This time actually follow instructions.
Search for LEMMY.SAIK0.COM... Notice it's not there even though my instance clearly exists and has an SSL cert.
What you're seeing is certs from over a year ago. You're seeing domains I registered specifically. eg... not ones I've associated with a wildcard.
Next time make sure you're actually right before you act so confident.
Here's a list of subdomains that are under a wildcard SSL cert... That will not show up in that list since they were never registered for their own cert and only EVER operated under the wildcard one.
convert.saik0.com
esign.saik0.com
lemmy.saik0.com
wordgame.saik0.com
yt.saik0.com
And there's plenty more I could point out. But if you follow instructions and actually search, you'll see that those do exist as accessible subdomains and do not show up in the crt.sh tool.
Edit: LMFAO so you downvoted me... checked my shit and realized that you're wrong. Deleted your message and kept your downvote in place.
Edit2: For those coming after the fact and maybe not liking my initial tone at the top there. I mirrored the tone they posted in.