Hacker News new | past | comments | ask | show | jobs | submit login

Also, ioerror has posted an update in response to Comodo's disclosure:

https://blog.torproject.org/blog/detecting-certificate-autho...

Bottom line is certificate revocation lists and OCSP don't mean anything to an attacker like Iran who is MITM'ing the relevant traffic.




Yea, did the OCSP designers even thinking about the possiblity of MITMing the OCSP itself?




Join us for AI Startup School this June 16-17 in San Francisco!

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: