Comment by egberts1
1 year ago
This is why we should be doing dual-server-client TLS certificate exchange before stuffing damaging info over Internet. But, alas, nooooooooo.
1 year ago
This is why we should be doing dual-server-client TLS certificate exchange before stuffing damaging info over Internet. But, alas, nooooooooo.
Any more post-relevant insights we should congratulate you for, or is it just this one?
How would mutual TLS have helped here?
Mutual TLS dutifully breaks if there is a transparent HTTPS proxy like SSLbump or Squid.
You can do certificate pinning.