Skip to content
Better HN
Top
Best
Ask
Show
New
Jobs
Search
⌘K
0 points
hiatus
1y ago
0 comments
Save
Share
Good thing you can still see the domain over the network if you control the network.
0 comments
5 comments · 1 top-level
top
newest
oldest
lukevp
1y ago
· 4 in thread
You can’t control anything if they do DNS over HTTPS to a hardcoded IP they control and cert pin so you can’t MITM the connection, can you?
userbinator
1y ago
That's what a firewall is for.
Wingy
1y ago
If the pinned cert is stored on some kind of ROM chip you could probably rewrite it to replace it with your own cert.
hiatus
OP
1y ago
You can at the very least block traffic to the hardcoded IP.
pkulak
1y ago
Sure, but then DNS breaks on the device and it's useless. Might as well just hit it with a hammer.
j
/
k
navigate · click thread line to collapse
