Yes, some hosts are pinned: https://dxr.mozilla.org/mozilla-central/source/security/manager/tools/PreloadedHPKPins.json
MITM is *always* bad and breaks the web. Modern browsers, especially Firefox, have great features to protect the users and this is something good. I'm pretty sure your students don't even know, that you attack their connection to the Internet. You may have no influence on the decision why you have to do this (mostly because of surveillance and censorship), but this a political discussion and there are many issues on this topic. I have no wish to comment this further. Am 16.09.2015 um 23:57 schrieb Kurt Roeckx: > On Wed, Sep 16, 2015 at 02:51:28PM -0700, AnilG wrote: >> there's another issue blocking them for Firefox: Secure Connection Failed. >> The connection to wiki.mozilla.org was interrupted while the page was >> loading. > I wonder if firefox is using certificate pinning for > *.mozilla.org. > > > Kurt > > _______________________________________________ > dev-security-policy mailing list > [email protected] > https://lists.mozilla.org/listinfo/dev-security-policy
signature.asc
Description: OpenPGP digital signature
_______________________________________________ dev-security-policy mailing list [email protected] https://lists.mozilla.org/listinfo/dev-security-policy
