Problem:
I was using a self-signed certificate.
These are vulnerable to MITM attacks.
Solution:
I got a certificate through letsencrypt. Thanks EFF!
I made various tweaks to client and server code to support a "real"
SSL certificate rather than the self-signed one I had been using.
Problem: I was using a self-signed certificate. These are vulnerable to MITM attacks.
Solution: I got a certificate through letsencrypt. Thanks EFF! I made various tweaks to client and server code to support a "real" SSL certificate rather than the self-signed one I had been using.
Issue: This fixes #17.