@emersion maybe HTTP challenge with a random subdomain?

@wolf480pl Sounds a bit risky, but interesting idea nonetheless.

I wonder if it would be possible to require a wildcard DNS record. e.g. if I have "*.example.org CNAME asdf.example.org", then would a HTTP or TLS-ALPN challenge for asdf.example.org be enough?

@wolf480pl (Ofc wouldn't cover all use cases since some people will want wildcard certs without setting up wildcard DNS records, but would be a good start)

Sign in to participate in the conversation
Octodon

The social network of the future: No ads, no corporate surveillance, ethical design, and decentralization! Own your data with Mastodon!