Hacker News new | past | comments | ask | show | jobs | submit login

MITM would be unnoticeable then.



Unless you visited the site before. (like ssh). Or if the trust was provided through another channel (DNS).


If somebody can tamper with your HTTP connections on the fly, they can surely rewrite the DNS too.


maybe, maybe not they use separate paths in general so its quite a bit hard as you need to be closer to the client, or compromise more hosts. not saying it's the bulletproof solution tho. it's definitely not. its just that some services (like ssh) actually provide that feature.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: