I have a home server and I have some HTTP services running on it. I'm thinking if I should even bother with HTTPS, as I'm already using tail scale which should be peer-to-peer and encrypted. So I shouldn't worry about any men in the middle.
Am I missing something?
It just feels wrong to work with non-S HTTP :(
Use something like no-ip, you can get a domain for free and renewing it every 30 days with a few clicks is much easier then managing a CA.
The only downside is the TLD but if you don’t care to much about how your domain name looks it really is the best option.
I use no-ip with letsencrypt, the LE bot does the certificate stuff for me, I use a single domain with different ports for each service and no-ip sends an email every 30 days to reconfirm the domain. Simple and easy.
English
One day I will setup my security onion, but I’m procrastinating