LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

PostgreSQL 9.3 beta: Federated databases and more

LWN.net Weekly Edition for May 9, 2013

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

China, GitHub and the man-in-the-middle (Greatfire)

China, GitHub and the man-in-the-middle (Greatfire)

Posted Jan 30, 2013 21:53 UTC (Wed) by intgr (subscriber, #39733)
In reply to: China, GitHub and the man-in-the-middle (Greatfire) by kjp
Parent article: China, GitHub and the man-in-the-middle (Greatfire)

No, such abuse wouldn't last long and China knows it.

You clearly missed this bit in TFA:

> The attack would be detectable by manually reviewing the SSL certificate. While the vast majority of users would not do this, one single report on such an attack would create a huge international scandal that might lead to major browsers removing their trust of CNNIC. So the authorities will likely avoid using this tool, unless they feel it’s absolutely necessary.

(Log in to post comments)

China, GitHub and the man-in-the-middle (Greatfire)

Posted Jan 30, 2013 23:17 UTC (Wed) by Fowl (subscriber, #65667) [Link]

> ...such an attack would create a huge international scandal that might lead to major browsers removing their trust of CNNIC

We can hope. Sometimes the outrage never comes, unfortunately.

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds