|
|
|
|
|
|
by batch12
1872 days ago
|
|
|
There are a few ways one could perform this attack. SSL stripping would be the most transparent. The attacker could also proxy SSL with a different cert. If the cert was invalid the victim would at least be warned. HSTS should mitigate this threat. |
|
|