this post was submitted on 08 Mar 2024
333 points (97.4% liked)
Europe
8324 readers
1 users here now
News/Interesting Stories/Beautiful Pictures from Europe ๐ช๐บ
(Current banner: Thunder mountain, Germany, ๐ฉ๐ช ) Feel free to post submissions for banner pictures
Rules
(This list is obviously incomplete, but it will get expanded when necessary)
- Be nice to each other (e.g. No direct insults against each other);
- No racism, antisemitism, dehumanisation of minorities or glorification of National Socialism allowed;
- No posts linking to mis-information funded by foreign states or billionaires.
Also check out [email protected]
founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
TLS means dick if you have a nation-state that can mint a cert that would be trusted by your browser. Unless you're using a site that does cert pinning (which is basically a list your browser has of URLs and expected cert fingerprints as published by the site owners) or the fuckery that Google gets up to in chrome (they monitor and immediately ping the mother ship if a Google property is detected using an unauthorized cert), you can't really stop or detect it as an end user.
Your computer trusts so many companies to vouch for other sites' legitimacy that it's not out of the realm of possibilities that they leaned on a CA and minted a cert to let them MITM the connection. You're still connecting to a "trusted" cert, even if it isn't the legitimate one.