On 10.09.13 15:44, Trent W. Buck wrote:
Turkish intelligence don't need to "crack" TLS; they just get Firefox to trust them by default, then do the normal MITM dance. I don't see why the NSA can't do that, too.
Thanks, Trent, that link is eye-opening! My SSL fu isn't up to grokking how the cert would initially get onto his machine. Is the extra one sneaked in when firefox is pointed at a boobytrapped https page? If so, it'd pretty much take my bank or an electronic gadgetry vendor to perform the infiltration here. Oh-Oh, that's not true - just visiting a facebook page (without ever having signed up to the thing) has us https-ing. (It's time to find out where the certs hide, I guess) Erik -- Tecoma's Macca-striking flash mob: http://www.youtube.com/watch?v=H7-0T1vbnWE Stop fat food joint opposite Tecoma preschool: www.change.org What's cooking: https://www.facebook.com/pages/NO-McDonalds-in-The-Dandenong-Ranges/22041986...