Boston Linux & UNIX was originally founded in 1994 as part of The Boston Computer Society. We meet on the third Wednesday of each month, online, via Jitsi Meet.

BLU Discuss list archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Discuss] comcast wifi question

> From: Bill Ricker [mailto:bill.n1vux at gmail.com]
> 
> tl;dr - Google HTTPS *is* safe from MITM but *only* with Chrome so
> far. Rest of HTTPS not as much.

I'm not following you here.


> If the hacker with control of the WiFi AP is working for an
> organization with control of any of the many Root CA certs built into

Careful there.  While it's true that anybody can successfully perform MITM who has control of a root CA that's trusted by your browser, *and* it's been known to occur in reality sometimes, it is somewhat rare and unusual.  Default root CA lists in modern OSes and browsers don't include China Post, or whatever you said, and other such sketchy CA's.
BLU is a member of BostonUserGroups
BLU is a member of BostonUserGroups
We also thank MIT for the use of their facilities.

Valid HTML 4.01! Valid CSS!

Boston Linux & Unix / webmaster@blu.org