Hacker News new | ask | show | jobs
by vbezhenar 4070 days ago
Does it work with sites like Google from Google Chrome where browser knows about their public keys? I think that this will be wide practice in modern browsers.

HSTS/HPKP headers could be stripped by proxy but preloaded public key list probably will require custom browser build.
1 comments
falcolas 4070 days ago
Yes, it does. Google intentionally adds exceptions from error reporting in the case a root CA was added to the OS.
link