Comment by kortilla
It’s 2024, we’ve seen countless examples of sophisticated hackers getting into all kinds of systems. Anybody who makes a blanket statement that you have to trust the public PKI is either lazy or stupid.
SSH has TOFU and it works very well if you don’t want a key infrastructure.