On 25/11/2015 12:59, Florian Schütz wrote: > This is true for Chrome and, I think, for Firefox as well. Some > enterprises insist on MITMing TLS connections at a proxy, and at least > Chrome will not break this. They argue if they were to strictly > enforce Pins, people would just switch to a more permissive browser. I > agree with their line of thought. Yup. Firefox of course isn't aware of this Dell key, as it is in the windows keystore, so will fail to validate such a certificate....
_______________________________________________ cryptography mailing list cryptography@randombit.net http://lists.randombit.net/mailman/listinfo/cryptography