Stuff like this is why all sw/browsers MUST REMOVE SUPPORT for adding custom root CAs.https://twitter.com/konklone/status/672127239987798017 …
-
-
Replying to @RichFelker
@RichFelker@konklone that cannot happen it's needed for SSL MitM for enterprises2 replies 0 retweets 0 likes -
Replying to @SwiftOnSecurity
@SwiftOnSecurity@konklone Enterprise just needs to give this up and find a different solution. MITM is always unacceptable.1 reply 0 retweets 0 likes -
Replying to @RichFelker
@SwiftOnSecurity@konklone For "asset control" it's useless anyway; rogue employees can just use an alternate channel to move data out.2 replies 0 retweets 0 likes -
Replying to @RichFelker
@RichFelker@SwiftOnSecurity@konklone Technical solutions only follow requirements. We need to stop entities from requiring MitM instead.1 reply 0 retweets 0 likes -
Replying to @rinon
@Rinon@SwiftOnSecurity@konklone You can't stop rogue nations from requiring it. But you can put them in violation of IP treaties.1 reply 0 retweets 0 likes -
Replying to @RichFelker
@RichFelker@SwiftOnSecurity@konklone Well... theoretically nations could simply customize other open-source browsers. Or require IE ;)1 reply 0 retweets 0 likes -
Replying to @rinon
@Rinon@SwiftOnSecurity@konklone That's where you use TM law. Disallow use of the Chrome/Firefox/etc. TM's if security features are removed1 reply 0 retweets 0 likes
@Rinon @SwiftOnSecurity @konklone Then they can call 'em Rustium and Spyweasel.
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.