I wish SSL and HTTPS authentication had been separated at birth. I'd like HTTP S... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		ck2 on March 24, 2011 \| parent \| context \| favorite \| on: Iranian hackers obtain fraudulent HTTPS certificat... I wish SSL and HTTPS authentication had been separated at birth. I'd like HTTP SSL encryption and I'll worry abut certification as another problem.

tptacek on March 24, 2011 [–]

I think Iran's intelligence services also wish SSL and HTTPS authentication had been separated at birth. Sure would make things easier for them if all they they needed was the MITM proxy, and not the certificate.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact