[Cryptography] Damned if you don't, even more damned if you do
Yui Hirasawa
yui at cock.li
Mon Feb 29 13:14:01 EST 2016
> This is even worse than the reverse security offered by browsers where
> unencrypted web sites are treated as more secure than encrypted-via-a-non-
> public-CA ones. In this case the MITM-able connection is treated as secure
> while the (hopefully) MITM-proof one is treated as insecure.
And then there is that voluntary MaaS company (MITM as a service) called
CloudFlare that people use.
More information about the cryptography
mailing list