Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://friedcheese.us/objects/e1a65c8c-10da-463f-b1d0-19dad2fb5ee6">feld (feld@friedcheese.us)'s status on Thursday, 16-Jan-2025 08:57:37 JST</a><a href="https://friedcheese.us/users/feld" title="feld@friedcheese.us"><img src="https://gnusocial.jp/avatar/274913-48-20241012191855.webp" width="48" height="48" alt="feld" style="position: absolute; left: 0; top: 0;">feld</a><div><a href="https://mastodon.social/@bagder/113835041336891136" rel="in-reply-to">in reply to</a><ul><li><li><a href="https://gnusocial.jp/user/78887" title="icing@chaos.social">Stefan Eissing</a></li><li><a href="https://gnusocial.jp/user/263044" title="jelu@mastodon.social">Jerry Lundström :catjam:</a></li></ul></div></section><article><a href="https://mastodon.social/@bagder">@bagder</a> <a href="https://mastodon.social/@jelu">@jelu</a> <a href="https://chaos.social/@icing">@icing</a> If someone can present a valid certificate to the client after hijacking the DNS response or poisoning their recursor in 2025 when our trusted roots are not so poorly managed and evade the certificate transparency logs I'll be impressed.<br><br>But I'm still not gonna use DNSSEC 🙃</article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/4381922#notice-8571360">In conversation</a><time datetime="2025-01-16T08:57:37+09:00" title="Thursday, 16-Jan-2025 08:57:37 JST">about 2 days ago</time> <span>from <span><a href="https://friedcheese.us/objects/e1a65c8c-10da-463f-b1d0-19dad2fb5ee6" rel="external" title="Sent from friedcheese.us via ActivityPub">friedcheese.us</a></span></span><a href="https://friedcheese.us/objects/e1a65c8c-10da-463f-b1d0-19dad2fb5ee6">permalink</a></footer></blockquote>

Corresponding Notice

Embed this notice
feld (feld@friedcheese.us)'s status on Thursday, 16-Jan-2025 08:57:37 JSTfeld
in reply to
@bagder @jelu @icing If someone can present a valid certificate to the client after hijacking the DNS response or poisoning their recursor in 2025 when our trusted roots are not so poorly managed and evade the certificate transparency logs I'll be impressed.

But I'm still not gonna use DNSSEC 🙃
In conversationabout 2 days ago from friedcheese.uspermalink

Public

Embed Notice

HTML Code

Corresponding Notice