@bascule With a CA cutting bogus certs they can intercept (MitM), with exact private key they can intercept everyone without being detected
So yeah, I take that back, if the government has your private key, they can MitM...
-
-
-
@bleidl it's still an active attack though. The C|Net article implied a passive eavesdropper. The way TLS is deployed today that can work -
@bascule It would be interesting to know if they are asking for those keys or not since it would speak to capabilities and intentions. -
-
-
-
-
- 1 more reply
New conversation -
-
-
@bascule no...no the government can suck my dick :DThanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.