undefined | Better HN

0 pointsrecursive3y ago0 comments

> You might not care that someone can't MITM your Wikipedia traffic, but you almost certainly care that someone can't MITM your tax returns or your medical records.

So presumably, you'd demand a cert from a trustworthy authority in those cases. But you still don't want your ISP to be able to inject ads into the recipe blog you're reading.

0 comments

1 comments · 1 top-level

donaldstufft3y ago

With self signed certificates your ISP can just serve their own self signed certificate, and then inject ads into the recipe blog.

j / k navigate · click thread line to collapse