12 Sep
2011
12 Sep
'11
1:50 p.m.
On Mon, Sep 12, 2011 at 7:09 AM, Martin Millnert <millnert@gmail.com> wrote:
Something similar, including use of purchased (not only limited to stolen certs), is ongoing already, all of the time. (I had a fellow IRC-chat-friend report from a certain very western-allied middle eastern country that there's ISP/state-scale SSL-MITM ongoing there, for all https traffic.)
If this were true, don't you think your friend would provide an SSL cert? Damian -- Damian Menscher :: Security Reliability Engineer :: Google