Import CA Root certificate and access HTTPS content

Поделиться
HTML-код
  • Опубликовано: 29 окт 2024

Комментарии • 30

  • @johnsono3
    @johnsono3 3 месяца назад +5

    Mikrotik has become my favourite IT learning resource.

  • @BattousaiHBr
    @BattousaiHBr 3 месяца назад +1

    funny you post this now since last week i had to figure out just that to make work the cert check for the new adlist feature.

  • @deafno
    @deafno 2 месяца назад

    How are /system/package/update verified for transport malleability / MITM attacks if there are no TLS trust roots provided with base OS? Signing with asymmetric keys?

  • @nezu_cc
    @nezu_cc 3 месяца назад +1

    ok, but why not maintain an official list, or justackage the Mozilla one like most other systems? If storage is a concern why not make it a separate package? How about revocations? Or maybe go the Microsoft approach and download root certs from a trusted source as needed.

  • @8bit-1bytee
    @8bit-1bytee 3 месяца назад

    Can you please add the possibility of using xray core and singbox to Mikrotik router.I now have to install openwrt on the router to be able to use this option, which also has its own problems. Please do this

  • @TheRealStevenPolley
    @TheRealStevenPolley 3 месяца назад

    Why does mikrotik download updates in the clear using HTTP?!?! I love the products, but this drives my crazy and what I thought was convenience was broken security

  • @wakorins
    @wakorins 3 месяца назад

    When is mikrotik going to develop qrcode for remote access for devices

  • @hey_leao
    @hey_leao 3 месяца назад

    I use DoH here, ive imported the certificate for adlist, but still not working.

    • @mikrotik
      @mikrotik  3 месяца назад +1

      If you use DoH, you are not using the local DNS. You must choose which server will be your DNS server, you can't have both

    • @hey_leao
      @hey_leao 3 месяца назад

      @@mikrotik ok, thank you.

  • @squid11160
    @squid11160 3 месяца назад +1

    Nice refresher, thank you

  • @trapscripting8475
    @trapscripting8475 3 месяца назад

    Will the certificate auto update?

  • @spiritcore1
    @spiritcore1 3 месяца назад

    What linux distro used in 2:42?

    • @mikrotik
      @mikrotik  3 месяца назад +1

      EndeavourOS

  • @alexandrelenoir3564
    @alexandrelenoir3564 3 месяца назад

    can it's work with squid cache ?

  • @isoplayer
    @isoplayer 3 месяца назад

    i use ssl on ros for sstp with windows machines

  • @churchers
    @churchers 3 месяца назад +2

    Most of my BSD servers end up having the ca_root_nss package installed which is the root cert database from Mozilla. I'm surprised RouterOS doesn't have a similar package that imports a well maintained complete root cert list. I guess the router doesn't need to access TLS services that often but seems incredibly clunky to have to manually provide root certificates individually.

    • @tcsoft
      @tcsoft 3 месяца назад

      Maybe because of package size

  • @blizzard13ful
    @blizzard13ful 3 месяца назад

    I love how you guys are using Linux, but there is still no native Linux WinBox...

    • @MaxGanistrat
      @MaxGanistrat 3 месяца назад

      for what? use ssh

    • @neshura
      @neshura 3 месяца назад +1

      Works fine via Wine as well, can't say anything about complex use cases but it did the job well enough when I set up my switch. Obviously native would be better but so long as it works I'm not complaining much

  • @ONvNO
    @ONvNO 3 месяца назад

    CFIE

  • @sadcatboi2137
    @sadcatboi2137 3 месяца назад

    Too bad CRL doesnt work

  • @TheSimArchitect
    @TheSimArchitect 3 месяца назад

    I tried one of your devices and even though I love your enthusiast concept the wireless signal was awful, taking me back to poor wifi quality from 20 years ago. Is it because I bought a budget device from your brand and they suck or is the quality of your radios poor across your entire offering? It is a shame that you use hardware that's worse than the one provided for free by my ISP. I also tried other two well known brands, by the way, and the quality was also subpar.
    I love the ability to customize everything you offer, but it's not enough if you can't provide good signal levels across a shoebox sized 2 bedroom apartment like mine. No hate, just trying to understand. Meanwhile I am stuck with my ISP's router because I am not going to spend 500 euros on a router.

    • @Soda88
      @Soda88 3 месяца назад

      Maybe you could've specified exact model of the device, Mikrotik still offers devices with b/g/n only radios.

    • @TheSimArchitect
      @TheSimArchitect 3 месяца назад

      @@Soda88 The problem wasn't speed but coverage for smart home devices. I wonder if the issues were more related to the power, but like you say, most of the time we see information on the speed, not on the strength of the signal. It's a shame because the system is very complex and would be fun to learn.

    • @2008spoonman
      @2008spoonman 3 месяца назад

      Dunno what Mikrotik device you have. I have two hAP ax2 devices and I have MASSIVE wifi coverage.
      Make sure you configure your wifi settings the right way. Leaving it at default will not give it the most signal.

    • @sadcatboi2137
      @sadcatboi2137 3 месяца назад +1

      Pre AX routers from mikrotik used to have low gain antennas

    • @TheSimArchitect
      @TheSimArchitect 3 месяца назад

      @@sadcatboi2137 Nice to know! I will check what I had later