[liberationtech] Did Syria replace Facebook's security certificate with a forged one?
Jillian York
jyork at cyber.law.harvard.edu
Thu May 5 12:11:58 PDT 2011
I think perhaps the person misunderstood - it's the Syrian gov't (via its
gov't-controlled ISP) faking the certs. It is NOT Facebook doing the
cert-faking.
On Thu, May 5, 2011 at 12:03 PM, <liberationtech at lewman.us> wrote:
> On Thu, May 05, 2011 at 08:45:05PM +0200, canconsulting at web.de wrote 5.4K
> bytes in 72 lines about:
> : Seriously: Can you name at least one advantage of the alleged
> : certificate faking for Syrian internet users?
>
> Your question is confusing. Using faked certs doesn't help Syrian
> citizens, rather it puts them at risk.
>
> However, it does help the government. The govt gets to
> machine-in-the-middle all ssl traffic to facebook, decrypt it,
> parse/record/store the unencrypted data, and then go arrest/kill people
> with proof of content against the state. Or the data can be used to
> unmask social networks of people friendly to the cause of protesting,
> etc.
>
> This same mitm has happened in Tunisia, Iran, Burma, and suspected in
> many other countries. In fact, you can buy hardware to do this from US
> companies, like Bluecoat or Packet Forensics. Or just roll your own
> with one of the many mitmproxy projects out there, like
> http://mitmproxy.org/.
>
> --
> Andrew
> pgp key: 0x74ED336B
> _______________________________________________
> liberationtech mailing list
> liberationtech at lists.stanford.edu
>
> Should you need to change your subscription options, please go to:
>
> https://mailman.stanford.edu/mailman/listinfo/liberationtech
>
> If you would like to receive a daily digest, click "yes" (once you click
> above) next to "would you like to receive list mail batched in a daily
> digest?"
>
> You will need the user name and password you receive from the list
> moderator in monthly reminders.
>
> Should you need immediate assistance, please contact the list moderator.
>
> Please don't forget to follow us on http://twitter.com/#!/Liberationtech
>
--
Berkman Center for Internet and Society |
https://cyber.law.harvard.edu/people/jyork
jilliancyork.com | @jilliancyork | tel: +1-857-891-4244
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.stanford.edu/pipermail/liberationtech/attachments/20110505/bdf0beba/attachment.html>
More information about the liberationtech
mailing list