547

at the trilogue meeting, secretly negotiating legislation to reduce web browser security (lemmy.ml)

submitted 1 year ago by cypherpunks@lemmy.ml to c/programmerhumor@lemmy.ml

37 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[-] dark_stang@beehaw.org 5 points 1 year ago

If they wanted to make browsers less secure, they would do so in much more obvious ways.

The new proposal demands browsers automatically trust government created root certificates. That means any EU government can do a man-in-the-middle attack on any end user running that web browser, even users in other countries. There is no reason to do that other than to spy on people or to manipulate the content that they're viewing.

If any government, or company for that matter, wants to make their own root cert and deploy it to all their users/machines they can already do that easily. A lot of companies that work with sensitive data already do this, and some companies (ex: symantec) provide solutions to do it very easily, so the IT team can see everything the users are doing.

[-] theterrasque@infosec.pub 1 points 1 year ago

https://spectrum.ieee.org/diginotar-certificate-authority-breach-crashes-egovernment-in-the-netherlands

This is probably the seed of this madness

this post was submitted on 02 Nov 2023

547 points (98.6% liked)

Programmer Humor

32373 readers

580 users here now

Post funny things about programming here! (Or just rant about your favourite programming language.)

Rules:

Posts must be relevant to programming, programmers, or computer science.
No NSFW content.
Jokes must be in good taste. No hate speech, bigotry, etc.

founded 5 years ago

MODERATORS

AgreeableLandscape@lemmy.ml

cat_programmer@lemmy.ml