[fiddlerwoaroof]

So, when a company decides to run internal services for its non-technical employees on its internal network, now they have to make sure that all the user’s devices on the LAN (including BYOD devices) are configured properly?

[rrix2]

Cool, so make it drivable via policy files like e.g. client cert pinning in Chrome. Industry has solved these problems, making excuses for fixing it is not good at this point.

[viraptor]

I don't see how that use case is affected. Could you post a specific example you think would be broken?