On 7/4/12 10:34 AM, John Nagle wrote:
> A CA called Cyberoam appears to have issued a wildcard cert to
> enable MITM attacks for "deep packet inspection" [...]
>
> They're not a CA trusted by Mozilla, apparently.
They're not a CA. Businesses wishing to use the Cyberoam devices
need to install
A CA called Cyberoam appears to have issued a wildcard cert to
enable MITM attacks for "deep packet inspection" and "security"
purposes. The same cert is used by all their devices.
https://blog.torproject.org/blog/security-vulnerability-found-cyberoam-dpi-devices-cve-2012-3372
They're not a