|
|
|
|
|
|
by jeremyjh
2406 days ago
|
|
|
They should be permitting OTA only if the website they download from over TLS has a cert signed by the developer/manufacturer or at least a public CA with a CN matching the host name...so you'd have to physically access each device and not just MITM them. |
|
|