196

16087 readers

1930 users here now

Be sure to follow the rule before you head out.

Rule: You must post before you leave.

^other^ ^rules^

founded 1 year ago

MODERATORS

[email protected]

qaz

[email protected]

842

thanks lain (rule) (lemmy.blahaj.zone)

submitted 1 month ago by [email protected] to c/[email protected]

90 comments fedilink hide all child comments

Source

you are viewing a single comment's thread
view the rest of the comments

[–] [email protected] 20 points 1 month ago (1 children)

Yes, back when I was playing around with my WiFi pineapple there were a wide variety of tricks to break SSL authentication without it being obvious to users. Easiest was to terminate the SSL connection on the pineapple and re-encrypt it with a new SSL cert from there to the users browser, so to the user it looked like everything was secure but in reality their traffic was only encrypted from them to the pineapple, then decrypted, sniffed and re-encrypted to pass along to the target websites with normal SSL.

Man in the middle attacks really do give the attacker tons of options

[–] [email protected] 17 points 1 month ago (1 children)

That kind of ssl interception would normally be quite visible without your client device having the pineapples cert in your devices trust store, or am I wrong?

[–] [email protected] 8 points 1 month ago* (last edited 1 month ago)

I'm sure a lot has changed in 10 years ago so this won't be relevant today, but back when I was last playing with this, sslstrip was the tool I was using on the pineapple to enable SSL mitm attacks - https://github.com/moxie0/sslstrip

I'd imagine there are new techniques to counteract new defenses - this stuff is always cat & mouse