It's vastly different to do TLS termination within your own network and to do it on a rando VPS and then send normal TCP over the internet. It's not an argument of it being on the same server.

▲

traderj0e a day ago | parent [-]

The VPS is your security in this case. It's not sending plaintext over the internet, is it?

Edit: No, the article mentions listening on port 80 at home. I thought they'd be SSH tunneling or something. That is unusual, but I guess for a static website it doesn't really matter.

▲

SahAssar a day ago | parent [-]

> That is unusual, but I guess for a static website it doesn't really matter.

It sorta does matter. Either the actual raspi does nothing of value or the traffic has value that should be protected.

Sure, I heard the argument that public HTTP traffic does not need encryption but if it is of any value then both parties have a interest in it unmanipulated, uncenscored, validated or all of the before. Even if it is just preventing the ISP injecting dumb ads.

	▲	traderj0e a day ago \| parent [-]
		Yeah that's a valid concern. Idk, nothing about this setup makes sense.