• p1mrx@lemmy.world
    link
    fedilink
    English
    arrow-up
    5
    ·
    1 year ago

    It is straightforward to run an isolated network with TCP/IP, DNS, and web servers. The hard part would be dealing with software that complains/fails if you’re not using HTTPS.

    In general, you would want an offline copy of the entire software stack (e.g. a Gentoo Linux mirror) so you can patch whatever problems you encounter.

    • jelloeater - Ops Mgr@lemmy.world
      link
      fedilink
      English
      arrow-up
      1
      ·
      1 year ago

      You would have to run your own CA and get everyone to install your root cert on their devices. That what happens already with tech like smart cards and SSL inspection firewalls. It’s all about trusting the connection implicitly.

      • Agent641@lemmy.world
        link
        fedilink
        English
        arrow-up
        2
        ·
        1 year ago

        “Mate I dont trust you”

        “Its okay, I have a certificate”

        “This just says ‘Trust me bro’ and has your name at the bottom.”

        “If you still dont trust me, just call this guy, he will vouch for me!”

        “This is your own phone number.”