On Wed, 23 Aug 2017 11:46:02 +0300 Andrew Savchenko <[email protected]> wrote:
> Sigh... https also makes MITM attacks possible, especially if SSL > or TLS < 1.2 is used or are allowed and protocol version downgrade > attack may be performed. None of that is true. You're probably referring to attacks that were specific to certain browser weaknesses, but they're irrelevant for this use case. -- Hanno Böck https://hboeck.de/ mail/jabber: [email protected] GPG: FE73757FA60E4E21B937579FA5880072BBB51E42
pgpw64X7an5Wn.pgp
Description: OpenPGP digital signature
