Hacker News new | ask | show | jobs
by drpossum 708 days ago
Or anyone who controls your DNS resolution which has a number of paths (for example a local hosts file, possibly a router, changing your config or how you get your config to a malicious DNS server, etc)
5 comments
eknkc 708 days ago
Won’t work with https.

If that malicious actor can install a custom ca too, they can already install whatever spyware they want.

link
q3k 708 days ago
Not that easy with HSTS.
link
wbl 708 days ago
Also need a cert which is tricky
link
ruined 708 days ago
or public wifi access point
link
abirch 708 days ago
You'd probably need DNS and Root Certificates, something to which most employers have access
link