Hacker News new | past | comments | ask | show | jobs | submit login

>Sure, as long as the site uses HTTPS.

You really should think again about your logins especially if you are near a college campus and especially if you aren't using firefox (which will pop up with a warning on an https site when you are tunneled through someone else's computer).




Are there truly any major browsers that won't display an error page on bad (spoofed, self-signed, invalid, etc) certificates? A cursory Google search suggests that at least FF, IE, Chrome, and Opera will refuse to load such a page unless the user clicks through.

Unless the attacker obtains the private key for a root certificate, HTTPS remains secure no matter what location it's used from.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: