this post was submitted on 21 Oct 2023
56 points (95.2% liked)

Privacy

32476 readers
433 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS
top 2 comments
sorted by: hot top controversial new old
[โ€“] A1kmm@lemmy.amxl.com 13 points 1 year ago

This would be very hard to protect against; if the attacker controls Linode and Hetzner, it is likely they also have access to the disks and memory for the virtual services, and not just the network. So extracting the private key for the real certificate is probably also on the table as an option for the attacker, and would be much harder to detect.

As they say in the article, end-to-end encryption such as OTR is probably important to avoid getting caught in dragnets like this.

[โ€“] reinar@distress.digital 5 points 1 year ago

fun fact - lately russian govt started testing out protocol blocking (through dpi), several days ago there were reports of xmpp blocked for everything but jabber.ru.

warrant was likely received to bust some cybercrime org, jabber is pretty popular in ex-ussr in these circles, the usual question is what happened with this mitm channel after.