Hacker News new | past | comments | ask | show | jobs | submit login

How can I go about securing a server without a domain? Just a static IP? Let's Encrypt doesn't allow IPs and the owner doesn't care for a domain.

Context: small business with a web based application in a local server, all they need is to be able to access reports from their phone.




Self-signed certificate (or own CA and certificate signed by that). Buying a certificate for an IP is more expensive than a domain.


I've tried self-signed certificate somewhere else but it seems Chrome doesn't add the certificate permanently so every few days they get the "scary" not secure window again.

I'll try with my own CA.


Can I suggest registering a domain for $1, pointing that at the IP and using LetsEncrypt? Probably less effort in the long run.


Trusted certification authorities are not issuing DV SSL certificates (with domain verification) for IP-addresses; because it creates certain security threats .




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: