![](/static/253f0d9b/assets/icons/icon-96x96.png)
![](https://lemmy.ml/pictrs/image/d3d059e3-fa3d-45af-ac93-ac894beba378.png)
8·
2 months agoIf you’re going to mention Frank Zappa you also have to mention “Sheik Yerbouti” and “Ship Arriving Too Late to Save a Drowning Witch” by him.
If you’re going to mention Frank Zappa you also have to mention “Sheik Yerbouti” and “Ship Arriving Too Late to Save a Drowning Witch” by him.
All TLS/HTTPS clients have a set of Certificate Authority keys which they trust. Your client will only accept a public key which is signed by a trusted CA’s key. A proper CA will not sign a key for a domain when it has not verified that the entity that wants it’s key signed actually controls the domain.