Quote:
Originally Posted by EclipseDS
As someone who works a lot with X509 certificates and TLS/SSL, this is simply not true. .
|
As someone who works a lot with x.509 certificates and TLS/SSL, you should familiarise yourself with how MiTM attacks work and how controlling a trusted CA certificate makes it easy to conduct them. TM's root CA cert is valid for all purposes, not just code signing.