Hacker News new | past | comments | ask | show | jobs | submit login

the attacker MITM TLS has to present a certificate for the spoofed domain that was signed by a Certificate Authority the victim's browser trusts



Very easy to do. You can even automate it with Let's Encrypt since you can serve whatever DNS records you want.




The deadline for YC's W25 batch is 8pm PT tonight. Go for it!

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: