undefined | Better HN

0 pointsnotatoad4y ago0 comments

if your employer controls your work computer, they can set it to trust their MITM CA.

cert pinning means they can't do that unless they're also modifying yoru email client binaries.

0 comments

It depends on your email client. If your email client is Chrome, then the pinning won't help you at all.

>Chrome does not perform pin validation when the certificate chain chains up to a private trust anchor.

j / k navigate · click thread line to collapse

0 pointsnotatoad4y ago0 comments

if your employer controls your work computer, they can set it to trust their MITM CA.

cert pinning means they can't do that unless they're also modifying yoru email client binaries.

It depends on your email client. If your email client is Chrome, then the pinning won't help you at all.

>Chrome does not perform pin validation when the certificate chain chains up to a private trust anchor.

j / k navigate · click thread line to collapse