@RichFelker To play devil's advocate, what's stopping MITM box from doing forgery checking, cert pinning, or anything else browser w/ do?
To anyone considering MITM certs, even for AV, etc.: By doing this, you are completely disabling the browser's ability to detect forgery.
-
-
-
@matolucina Even if they were competent and willing to, there's no way to present results to use user & keep up with latest browser behavior -
@matolucina And with pinning there would likely be timing leaks that reveal what sites you've been to, even in porn mode... -
@matolucina ...because the MITM proxy has no way to know whether the browser is in porn mode or not, and no interest in assisting anyway.
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.