Y
Hacker News
new
|
ask
|
show
|
jobs
by
gzread
100 days ago
The mechanism was physical MITM of the server's network connection - they can 100% reliably get certificates issued since the domain name "legitimately" points to the MITM device at that point.