29 votes

Topic deleted by author

8 comments

  1. Octofox
    Link
    Sounds like a good time to put renewal in to a cron job..

    Sounds like a good time to put renewal in to a cron job..

    12 votes
  2. [4]
    teaearlgraycold
    Link
    Maybe this is just done to put it in layman's terms, but the traffic is encrypted. You're just susceptible to MITM attacks.

    Government websites with expired TLS certificates but which didn't implement HSTS show an HTTPS error in users' browsers, but this error can be bypassed to access the site via HTTP.

    Nevertheless, visitors are warned not to log in or perform any sensitive operations on these sites, as traffic and authentication credentials aren't encrypted and could be intercepted by threat actors.

    Maybe this is just done to put it in layman's terms, but the traffic is encrypted. You're just susceptible to MITM attacks.

    10 votes
    1. [3]
      Greg
      Link Parent
      Not if you use the HTTP version to bypass the error, surely?

      Not if you use the HTTP version to bypass the error, surely?

      1. [2]
        umbrae
        Link Parent
        That was the journalist’s error. When you click “proceed anyway” you are continuing to use the certificate, which is what @teaearlgtaycold meant. If you explicitly went to HTTP though it would be...

        That was the journalist’s error. When you click “proceed anyway” you are continuing to use the certificate, which is what @teaearlgtaycold meant. If you explicitly went to HTTP though it would be in the clear.

        3 votes
        1. teaearlgraycold
          Link Parent
          But a site that has a login page probably does not allow you to use http at all

          But a site that has a login page probably does not allow you to use http at all

  3. [3]
    boot20
    Link
    It's slightly terrifying that the government is still closed and it doesn't look like we are making any progress to open it back up.

    It's slightly terrifying that the government is still closed and it doesn't look like we are making any progress to open it back up.

    3 votes