Web servers can detect when their HTTPS connections are intercepted, and that means you can measure interception. https://zakird.com/papers/https_interception.pdf …
-
-
-
Replying to @RichFelker @matthew_d_green
If it can be done reliably, seems like a no-brainer that sites should block all access if they detect MITM.
1 reply 0 retweets 0 likes
Replying to @RichFelker @matthew_d_green
And invalidate any login credentials that were sent over the MITM'd connection (e.g. passwords).
9:39 AM - 7 Feb 2017
0 replies
0 retweets
0 likes
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.