Y
Hacker News
new
|
ask
|
show
|
jobs
by
skela224
3076 days ago
Would having TLS on the localhost endpoint (without client certificates) make the attack more difficult? the browser would have to validate the localhost-returned cert against the attacker.com hostname.