Join devRant
Do all the things like
++ or -- rants, post your own rants, comment on others' rants and build your customized dev avatar
Sign Up
Pipeless API
From the creators of devRant, Pipeless lets you power real-time personalized recommendations and activity feeds using a simple API
Learn More
-
@sunfishcc yes, but not when i want to cause mischief
-
-
@succcubbus nice idea, but dont people get suspicious?
-
@YouAreAPIRate of what, they see the website and get a nice green padlock in the top left :)
-
@succcubbus they get a certificate-error. The last time this happened to my father he called me (turned out the banking website still used the dev-certificate)
-
@YouAreAPIRate "SSLsplit generates and signs forged X509v3 certificates on-the-fly"
The only problem that can't be circumvented like this is HSTS with certificate pinning, which could be the case in your example. -
@succcubbus i got that, but they wont be accepted unless they are signed by are valid ca. Hsts got nothing to do with that
-
@sunfishcc "Yes, Let's."
HTTP response code cheat sheet
(From /r/Programmer humor)
Did you say security?
!rant
In july chrome will mark all http-pages as not secure and firefox will follow.
Worst of all, those insecure pages won't be allowed to access the microphone and other features any more. What will i do in cafes now?
rant
security
there got to be a way
https
messing with people