Moonlander dev update:
I made TOFU work! But security is still nonexistent! Why?
rustls's default `ServerClientVerifier::verify_tls12_signature` (and tls13) implementations break with some Gemini servers (I think because of the lack of SAN?), and I have absolutely no idea how to implement them manually, so they are essentially just "return true"-ing at the moment.
Any TLS wizards who think they might be able to give a hand with this, please let me know!
https://git.sr.ht/~admicos/moonlander/tree/main/item/proto-gemini/src/verifier/mod.rs#L56
Is verifying these even necessary for CA-less TLS? I am trying to look stuff up but documentation about this seems to be rare.