Maybe this is just done to put it in layman's terms, but the traffic is encrypted. You're just susceptible to MITM attacks.
Government websites with expired TLS certificates but which didn't implement HSTS show an HTTPS error in users' browsers, but this error can be bypassed to access the site via HTTP.
Nevertheless, visitors are warned not to log in or perform any sensitive operations on these sites, as traffic and authentication credentials aren't encrypted and could be intercepted by threat actors.
Maybe this is just done to put it in layman's terms, but the traffic is encrypted. You're just susceptible to MITM attacks.
That was the journalist’s error. When you click “proceed anyway” you are continuing to use the certificate, which is what @teaearlgtaycold meant. If you explicitly went to HTTP though it would be...
That was the journalist’s error. When you click “proceed anyway” you are continuing to use the certificate, which is what @teaearlgtaycold meant. If you explicitly went to HTTP though it would be in the clear.
Sounds like a good time to put renewal in to a cron job..
Maybe this is just done to put it in layman's terms, but the traffic is encrypted. You're just susceptible to MITM attacks.
Not if you use the HTTP version to bypass the error, surely?
That was the journalist’s error. When you click “proceed anyway” you are continuing to use the certificate, which is what @teaearlgtaycold meant. If you explicitly went to HTTP though it would be in the clear.
But a site that has a login page probably does not allow you to use http at all
It's slightly terrifying that the government is still closed and it doesn't look like we are making any progress to open it back up.
https://govavailability.info/
Single 9 uptime. Pretty pathetic.
Wow. That's super cool.