Comment by drpossum
6 months ago
Or anyone who controls your DNS resolution which has a number of paths (for example a local hosts file, possibly a router, changing your config or how you get your config to a malicious DNS server, etc)
6 months ago
Or anyone who controls your DNS resolution which has a number of paths (for example a local hosts file, possibly a router, changing your config or how you get your config to a malicious DNS server, etc)
Won’t work with https.
If that malicious actor can install a custom ca too, they can already install whatever spyware they want.
Not that easy with HSTS.
Also need a cert which is tricky
or public wifi access point
You'd probably need DNS and Root Certificates, something to which most employers have access