| |||||||||||||
HTTPS interception in Nokia's mobile browserHTTPS interception in Nokia's mobile browserPosted Jan 29, 2013 12:40 UTC (Tue) by nim-nim (subscriber, #34454)In reply to: HTTPS interception in Nokia's mobile browser by hummassa Parent article: HTTPS interception in Nokia's mobile browser
>> No amount of posturing will change the fact that the one who owns the
>> gateways has ultimate power on the traffic they carry
> YES! Tell this to the RIAA so they can go bully AT&T, Comcast, &c. instead
Actually, this is another reason why proxy interception exists on the workplace, as some users are too dumb not to engage in law-breaking activities there. That does not make company lawyers laugh a little bit.
>> it can just drop it if people start playing games
People will only invest in specific filtering rules is they are worth the bother. Your example is not widespread, therefore it is not worth detecting so far.
> And, as I said, banks Do Not Want you to MITM their https connections.
And as I wrote before, such claims are worthless without any hard data to back them up. Show us a single case involving banks and proxies and we can talk.
(Log in to post comments)
HTTPS interception in Nokia's mobile browser Posted Jan 29, 2013 13:24 UTC (Tue) by khim (subscriber, #9252) [Link] Show us a single case involving banks and proxies and we can talk. A few banks I've worked with never supported HTTPS as a means to secure transactions - exactly because they can be hijacked so easily. They either offered their own programs or separate devices to sign the transactions. What's surprising is that these Internet-disconnected devices are making a comeback: I know they were receinly reintroduced at least in Raiffeisen. Does it look like endorcement of MITM-in-https to you?
|
|||||||||||||