[Cryptography] New SSL/TLS certs to each live no longer than 47 days by 2029
John Gilmore
gnu at toad.com
Tue Apr 22 18:51:55 EDT 2025
iang via cryptography <cryptography at metzdowd.com> wrote:
> If you go back into the history of the thing, the evil MITM was like a
> religious devil that was much talked about and never seen. And when the
> first real MITMs turned up around 2003 (they called themselves phishers) ...
Uh, NSA has been a "real MITM" for many decades. Other major spying
countries are doing this too -- both the US's "adversaries" and "allies".
I agree that NSA works hard to never be seen. Yet sometimes they ARE
seen:
https://en.wikipedia.org/wiki/Tailored_Access_Operations#QUANTUM_attacks
https://en.wikipedia.org/wiki/MUSCULAR
Protection against MITM attacks remains vital.
John
More information about the cryptography
mailing list