Hacker Neue

Preferences
9dev parent
Yes. If we're talking about handling TLS termination and putting an IP behind a sensible hostname, I don't see what's wrong about using a reverse proxy. Note that this does not imply making it accessible on the internet.
FuriouslyAdrift
Yet more infra that must now be managed and a point of failure. No thank you.
9dev OP
Well. That, or maintaining bespoke PKI and internal CA, along with manually renewing certificates with ever-shortened expiration periods as demanded by browsers.

Pick your poison.

FuriouslyAdrift
Windows infra so certificate services is already baked in for 802.1x, etc.

This item has no comments currently.