|
|
|
|
|
|
by Someone1234
4328 days ago
|
|
|
Chrome's certificate pinning database doesn't scale at all (i.e. it works on less than 0.01% of the internet). As to the whois thing, what is stopping me from hijacking a domain, changing the whois and then generating keys? The webadmin might never even know. You don't even need access to their email. Or to put it more realistically: What is stopping the NSA from pressuring a domain registrar into altering the whois for a brief period in order to generate MITM keys? |
|
|