Good progress by @trailofbits on resolving the MITM threat model gap in algo VPN. http://bit.ly/2iuRPNb
I think you're misreading, that issue has to do with a server being compromised and its keys being stolen. You're f'd either way.
-
-
then if the server private key is compromised you're screwed. Never storing the private key seems promising
-
Compromising the server private key requires compromising the entire server. Even if you protect the key, you're still fucked.
- 6 more replies
New conversation -
-
-
i thought it had to do with the server certs being registered as root CAs in keychain
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.