It is straightforward to run an isolated network with TCP/IP, DNS, and web servers. The hard part would be dealing with software that complains/fails if you’re not using HTTPS.
In general, you would want an offline copy of the entire software stack (e.g. a Gentoo Linux mirror) so you can patch whatever problems you encounter.
You would have to run your own CA and get everyone to install your root cert on their devices. That what happens already with tech like smart cards and SSL inspection firewalls.
It’s all about trusting the connection implicitly.
It is straightforward to run an isolated network with TCP/IP, DNS, and web servers. The hard part would be dealing with software that complains/fails if you’re not using HTTPS.
In general, you would want an offline copy of the entire software stack (e.g. a Gentoo Linux mirror) so you can patch whatever problems you encounter.
You would have to run your own CA and get everyone to install your root cert on their devices. That what happens already with tech like smart cards and SSL inspection firewalls. It’s all about trusting the connection implicitly.
“Mate I dont trust you”
“Its okay, I have a certificate”
“This just says ‘Trust me bro’ and has your name at the bottom.”
“If you still dont trust me, just call this guy, he will vouch for me!”
“This is your own phone number.”
Yup! 😂