Hacker News new | ask | show | jobs
by dan1234 2709 days ago
It depends how the code is being injected. If they’re using a an output filter on the web server, they could do it before the encryption stage.

See http://nginx.org/en/docs/http/ngx_http_sub_module.html & https://httpd.apache.org/docs/2.4/filter.html