Do you recall the days when it was common practice for ISPs to MITM all traffic?
The most obvious and profitable use case were those ISPs who returned 404 pages riddled with advertisements for domains that were unregistered (e.g. if you mistyped a URL)
Certain ISPs even injected JavaScript into every page.
“I” in the OP’s comment probably means “government” or “ISP” rather than a friendly roommate on the same wifi network.
France isn’t listed, but Germany, Netherlands, United States (obviously) are. This was a thing that used to commonly happen before TLS became standard.
The most obvious and profitable use case were those ISPs who returned 404 pages riddled with advertisements for domains that were unregistered (e.g. if you mistyped a URL)
Certain ISPs even injected JavaScript into every page.
“I” in the OP’s comment probably means “government” or “ISP” rather than a friendly roommate on the same wifi network.