What is "vibiu-dau.com" have i been hacked?

[deleted]

other8026 (not going to happen, which is why they're trusted)

CAs can still get hacked themselves or their own malicious employees could help the attacker, but Certificate Transperancy will mean more trouble for the CA though.

de0u

[deleted] CAs can still get hacked themselves or their own malicious employees could help the attacker [...]

If a CA is compromised and then an ISP is compromised (to do DNS spoofing or traffic re-routing) and certificate pinning isn't happening...

Again, this isn't something an ISP can just decide to do.

forumuser https certificate spoofing for man in the middle attacks happen. There are many examples [...]

What's your "favorite" example?

other8026

[deleted] other8026 (not going to happen, which is why they're trusted)

CAs can still get hacked themselves or their own malicious employees could help the attacker, but Certificate Transperancy will mean more trouble for the CA though.

Yeah, I guess I should have written that part a little clearer. I just meant that under normal circumstances trusted CAs won't just issue certificates without first checking the person doing the request has the authority to do so. If they fail to do that part of their jobs, then they probably shouldn't be a CA.

admin

This thread is full of baseless speculation and misinformation. We expect better and will take moderation action if needed.

« Previous Page