[SSL Observatory] New bad Google MITM cert

Seth Schoen schoen at eff.org
Sat Dec 7 14:40:16 PST 2013


Adam Langley writes:

> On Sat, Dec 7, 2013 at 5:05 PM, Seth Schoen <schoen at eff.org> wrote:
> > They caught it with pinning.
> 
> You're assuming that. We have several channels by which we learn of
> these events, including users reporting them manually in some cases.

Huh, but don't the users learn about the certs to report as a result of
pinning failures?

-- 
Seth Schoen  <schoen at eff.org>
Senior Staff Technologist                       https://www.eff.org/
Electronic Frontier Foundation                  https://www.eff.org/join
815 Eddy Street, San Francisco, CA  94109       +1 415 436 9333 x107


More information about the Observatory mailing list