You are reading a single comment by @allensea and its replies. Click here to read the full conversation.
  • If an ssl certificate is being shown as issued by a "Proxy Certificate Authority", does that means it's a copy of a genuine certificate, being hosted by a man-in-the-middle?

    So any traffic between browser & website is visible to the man-in-the-middle?

  • View the certificate and see who issued it - root CA, intermediate CA or self-signed. I'm not sure what you mean by 'proxy certificate authority' though.

    In any case, your traffic is still encrypted. It is just a question of who holds the keys and can decrypt it.

  • It's issued by "Proxy Certificate Authority" - whereas I know that the actual certificate is issued by Geotrust.

    I guess it's the corporate firewall sneakin' a peak at what I'm looking at.

About

Avatar for allensea @allensea started