[Cryptography] New SSL/TLS certs to each live no longer than 47 days by 2029
Kent Borg
kentborg at borg.org
Tue Apr 22 08:30:12 EDT 2025
On 4/21/25 6:41 PM, Ron Garret wrote:
> But that's because the defense is in place. It's plausible that the reason we're not seeing MITM attacks is because the defense is effective.
Also we /have/ seen a version of this.
Before e-mail logins were commonly encrypted there was a big problem of
people using public wifi and being sniffed. (This is part of how the VPN
by Fear market still runs today.) We have also seen crooked wifi that
isn't just passive sniffing but lying DNS, etc.
Yes, I understand some attacks are different from "MitM". The point is
there will be bad guys attacking at the wifi if attacking at the wifi be
profitable. And if MitM is a good way to attack wifi it will happen. And
pretty much all user network access is wireless these days, if not cell
data, wifi.
-kb
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://www.metzdowd.com/pipermail/cryptography/attachments/20250422/4454e1bd/attachment.htm>
More information about the cryptography
mailing list