@__apf__ Do you think Chrome might have any defenses against this in future? I understand its pretty out of scope.
@__apf__ @SwiftOnSecurity You could still warn if any nonstandard CAs are installed. Wouldn't stop malicious actors but...
-
-
@__apf__@SwiftOnSecurity ...warning when nonstandard CAs are installed+used would force attackers to demonstrate malicious intent. -
@__apf__@SwiftOnSecurity Having disabled the warning functionality would help serve as proof of malicious intent in a court of law. -
@RichFelker@__apf__@SwiftOnSecurity Observ: Vertical platforms iOS & ChromeOS inherently safer than OEM customizable Android and Windows. -
@marcaruel@__apf__@SwiftOnSecurity How is OS with no adblock more secure when drive-bys in ads are the #1 infection vector? -
@RichFelker@__apf__@SwiftOnSecurity Closing security holes, 1 at a time? 1st fix is to reduce the # of people with authority on OS image.
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.