[Discuss] [BLU/Officers] update instructions for key signing
Derek Atkins
warlord at MIT.EDU
Tue Sep 18 10:02:08 EDT 2018
Bill Ricker <bill.n1vux at gmail.com> writes:
> (b) closed intranet (no BYOD allowed) where one IT org controls both the
> desktops and the webservers, and you install the Corp private selfsigned CA
> key into IT release of IE/Edge, FF, Chrome.
The downside of this latter approach is that the IT org can then sign
certs for *ANY* other site and therefore intercept all HTTPS traffic
they wish to see.
-derek
--
Derek Atkins, SB '93 MIT EE, SM '95 MIT Media Laboratory
Member, MIT Student Information Processing Board (SIPB)
URL: http://web.mit.edu/warlord/ PP-ASEL-IA N1NWH
warlord at MIT.EDU PGP key available
More information about the Discuss
mailing list