Bill Ricker <bill.n1...@gmail.com> writes: > (b) closed intranet (no BYOD allowed) where one IT org controls both the > desktops and the webservers, and you install the Corp private selfsigned CA > key into IT release of IE/Edge, FF, Chrome.
The downside of this latter approach is that the IT org can then sign certs for *ANY* other site and therefore intercept all HTTPS traffic they wish to see. -derek -- Derek Atkins, SB '93 MIT EE, SM '95 MIT Media Laboratory Member, MIT Student Information Processing Board (SIPB) URL: http://web.mit.edu/warlord/ PP-ASEL-IA N1NWH warl...@mit.edu PGP key available _______________________________________________ Discuss mailing list Discuss@blu.org http://lists.blu.org/mailman/listinfo/discuss