Jan Schaumannjschauma@mstdn.social
Apr 17, 2026, 12:57 AMTIL: in Chrome, if you encounter any cert error, you can just type `thisisunsafe` while on the error page and blammo! you're on the insecure page.
This even works for HSTS preloaded domains:
Replies
Scott Francisdarkuncle@infosec.exchangeApr 17, 2026, 1:09 AM@jschauma `iddqd` for the modern world
Apr 17, 2026, 1:12 AM@jschauma yeah, I remember using that a ton… says nothing good about our infrastructure that I had to use it a ton for internal stuff…
philbieberium@infosec.exchangeApr 17, 2026, 8:58 AM@jschauma This used to be "badidea", but they changed it at some point.
Bart Groeneveldbartavi@mastodon.nlApr 17, 2026, 10:01 AM@jschauma does Firefox have something similar?
Fabio Tavanograbbi_itApr 17, 2026, 6:32 PM
Ewon Changewon_c@social.linux.pizzaApr 20, 2026, 2:28 AM@jschauma I thought this is an April fool's joke...
- Ewon Changewon_c@social.linux.pizzaApr 20, 2026, 2:29 AM
@jschauma Also, Safari and Chromium-based browsers don't stop you from loading Let's Encrypt test sites with revoked certs https://letsencrypt.org/2026/04/10/test-sites.html