2.5 Admins

2.5 Admins 214: No VLANs

Sep 26, 2024

The discussion kicks off with Google's controversial call to rethink WHOIS for TLS verification, prompting debates about security alternatives. They dive into strategies for isolating IoT devices using Ubiquiti gear, alongside tips for setting up WiFi in new homes. Insights on enhancing remote access with WireGuard lead to hardware recommendations. They also tackle the intricacies of network devices, emphasizing the balance between usability and security, and share thoughts on optimizing connectivity and site-to-site VPN setups.

30:27

Creator website

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

The podcast discusses significant concerns about using WHOIS data for TLS verification, advocating for stronger methods to confirm domain ownership.

Speakers emphasize the inadequacy of current verification protocols like WHOIS and RDAP, calling for a dedicated certification authority to enhance security.

Deep dives

Concerns Over WHOIS and SSL Certificates

The discussion highlights the potential risks associated with relying on WHOIS data for issuing TLS certificates. The speakers argue that while WHOIS can identify domain ownership, it is not a reliable method for verifying domain control, particularly with growing privacy regulations. They emphasize that using email for verification fails to prove domain ownership adequately, as access to an email address does not equate to control over the associated domain. Instead, stronger verification methods such as adding a DNS record or creating a specific file are preferred to ensure legitimate domain ownership.

Intro

4min

Navigating Certificate Authority Challenges

7min

Navigating Security in Unmanaged Spaces

2min

Optimizing Home Network Connectivity

8min

Navigating Network Challenges: Improving Remote Access Solutions

3min

Navigating Site-to-Site VPNs with WireGuard

6min

A proposed solution to the WHOIS TLS verification problem gets a surprising amount of pushback. Plus isolating IoT devices, our thoughts on Ubiquiti gear, setting up WiFi in a new house, remote access with WireGuard, and our mini PC recommendations.

Plug

Support us on patreon and get an ad-free RSS feed with early episodes sometimes

News

Google calls for halting use of WHOIS for TLS domain verifications

Free consulting

We were asked about isolating IoT devices, our thoughts on Ubiquiti gear, setting up WiFi in a new house, remote access with WireGuard, and our mini PC recommendations.

1Password

Extended Access Management: Secure every sign-in for every app on every device. Support the show and check it out at 1password.com/25a

See our contact page for ways to get in touch.

Get the Snipd
podcast app

Unlock the knowledge in podcasts with the podcast player of the future.

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Save any
moment

Hear something you like? Tap your headphones to save it with AI-generated key takeaways

Share
& Export

Send highlights to Twitter, WhatsApp or export them to Notion, Readwise & more

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

2.5 Admins

2.5 Admins 214: No VLANs

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Concerns Over WHOIS and SSL Certificates

Proposed Changes and Industry Pushback

Introducing ARDAP and Its Limitations

Exploring Stronger Authentication Methods

Get the Snipd
podcast app

AI-powered
podcast player

Discover
highlights

Save any
moment

Share
& Export

AI-powered
podcast player

Discover
highlights

2.5 Admins

2.5 Admins 214: No VLANs

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Concerns Over WHOIS and SSL Certificates

Proposed Changes and Industry Pushback

Introducing ARDAP and Its Limitations

Exploring Stronger Authentication Methods

Get the Snipdpodcast app

AI-poweredpodcast player

Discoverhighlights

Save anymoment

Share& Export

AI-poweredpodcast player

Discoverhighlights

Get the Snipd
podcast app

AI-powered
podcast player

Discover
highlights

Save any
moment

Share
& Export

AI-powered
podcast player

Discover
highlights