|
|
|
|
|
|
by alcoholic_byte
2169 days ago
|
|
|
Well.
That is the reason for Certificate Pinning.
And these days there is no excuse to not enable it server-side.
Helped me detect some MITM-Interceptions.
Not that the content was malicious (OpenDNS just rerouted my requests to a "This site is blocked page", but the certificate was signed by Cisco, and thus valid. Certificate Pinning still picked it up. Little hint: It was an Archlinux-site.). |
|
|
Or is cert pinning something different than HPKP?
- [1]: https://security.stackexchange.com/questions/213410/did-goog...