BeatLink
commented
1 year ago The caldav server in this instance is a radicale server running on the same laptop as GTG, there is no transmission over the internet. And getting a letsencrypt certificate would involve purchasing a domain and setting up a server, all of which is overkill. Im not asking for it to be a permanent default set for all users, merelt a simple toggle switch that gives each user the choice.
I'm not sure this is a good idea, this would open you to MitM or password sniffing attacks when you are on public wifi or in totalitarian countries, if you enable this exception on a laptop and then decide to travel with it for example... wouldn't it be better to get your certificate fixed? After all, they're a commodity now that LetsEncrypt exists.