| ▲ | joxdosba 2 hours ago | |||||||
Why would anyone ever exclude true mitm? Various domain registrars have been compromised over and over again (often by children!), resulting in companies like Tesla and Cloudflare getting owned. The reality is that any vaguely competent attacker can compromise a court clerk and just compel e.g. the .com registry to hand over whatever domain they want. Although I suppose the aforementioned problem has significant implications beyond dns… | ||||||||
| ▲ | gruez an hour ago | parent [-] | |||||||
>Why would anyone ever exclude true mitm? Same reason security programs exclude social engineering, even though that's a pretty common way for companies to get pwned. | ||||||||
| ||||||||