Hacker News new | ask | show | jobs
by daira 3160 days ago
But you don't detect that one case where you are actually compromised. You dismiss it like you do all the false positives. At best, when you get pwned you think back to having dismissed the key change warning and know what happened, but how does that actually help you?
2 comments
scott00 3160 days ago
I actually caught a semi-real one once. My new employer was MITMing all ssh traffic.
link
saas_co_de 3160 days ago
this does not follow at all. any time a cert has changed i either know the cause or verify the cause before using the server.
link