On 12/05/17 13:04, Eugene Grosbein wrote:
It is illusion that https is more secure than unencrypted http in a sense of MITM just because of encryption, it is not.
It *is* more secure. In order to break it, you have to have compromized https authorities. Some state actors have plausibly done this. http, on the contrary, can be altered by anybody who has access to the wire, which is generally a much wider set.
Yuri _______________________________________________ [email protected] mailing list https://lists.freebsd.org/mailman/listinfo/freebsd-security To unsubscribe, send any mail to "[email protected]"
