at some point I need to secure my home automation's webserver so some idiot with a drone doesn't remotely turn off my fridge
Thinking about it, all the self-signed ssl certs etc would be a real pain to deal with.
Then I realized: Just ditch the webserver and use ssh. I already have ssh keys.
secured http over local unix socket accessed over ssh here I come
@joeyh Not sure about all implementations, but you can also use PSK if you use Mosquitto as the broker and c-mosquitto for Haskell side. The other two mqtt libs on Hackage doesn't seem to support PSK.