Hacker News new | ask | show | jobs
by ketralnis 5166 days ago
> We also have to trust whoever controls the crypto-js project and the people running googlecode.com.

And every router between them and googlecode.com (or whatever that resolves to in their DNS situation!)
1 comments
SamReidHughes 5166 days ago
The link is an HTTPS link so that's not true. You merely have to trust every CA.
link