On Tue, Jun 24, 2025 at 10:03 PM Endre Szabo via NANOG <[email protected]> wrote: > I bet they do on-device TLS MITM. Not sure how easy it is to do that these > days, but let’s assume.
Hi Endre, If you're being paid to provide an intentionally restricted Internet access service it's very easy: the middlebox simply blocks any protocol it can't decypher. Basic security protocol: deny by default. Any apps which won't work in that scenario... don't work. And that's what the buyer is paying for. Regards, Bill Herrin -- William Herrin [email protected] https://bill.herrin.us/ _______________________________________________ NANOG mailing list https://lists.nanog.org/archives/list/[email protected]/message/7OWUU4T24GJJM5HUM4YQFAMZO7Q3Y2EZ/
