Quote:
Originally Posted by ApK
BTW, does anyone know: Can a MitM attack be successfully executed, in the real world, if you check that the server shows a properly issued SSL cert? That is, assuming your browser is not compromised, if you actually check that the cert is issued to the correct domain from a trusted root, is there a legitimate chance of there being a MitM? I'm seriously asking because I'm not that versed in the implementation details of SSL or proxies.
|
Disclaimer: I am going to join you all in
not being a security expert.
But as I understand, this is the exact threat which
HTTP Strict Transport Security protects against.
MITM is usually leveraged to
strip the SSL and relies on the user not knowing that the website
should use HTTPS.
Of course, there are some
attacks that strike against TLS itself. But generally those get fixed by software updates (not much else you can do really).
As you say, this all depends on your computer (and the certificate authority!) not being compromised. If that happens, you've lost before you started fighting.