Y
Hacker News
new
|
ask
|
show
|
jobs
by
0x0
3919 days ago
Well if you control the domain you can easily get an SSL cert (except some clients might pin the CA for google.com).
2 comments
nly
3919 days ago
IIRC, all Chrome users are pinned for *.google.com
link
LgWoodenBadger
3919 days ago
However, chrome will still trust certs issued for Google domains that come from non-Google trusted issuers (things in your local trusted keystore)
It sucks because now your employee can MITM you for gmail/google chat/etc
link
HappyTypist
3919 days ago
Certificates are pinned too.
link