|
|
|
|
|
|
by pixl97
860 days ago
|
|
|
This can go back to your old buddy NTP, specifically DHCP assigning this on untrusted networks. If you control the network (time?) and you manage to get the full expired certificate you may be able to MITM the victim successfully. If you force the CRL check first then things won't match up. I have no ideas on the feasibility of faking the CRL though, so it might be a wash. |
|
|