Reply to post:

Hacked in a public space? Thanks, HTTPS

Preston Munchensonton

I understand what a man in the middle attack is but I don't understand why the user's browser would think its receiving data over an ssl connection.

Because there's two separate HTTPS connections: one from the user to MITM and the other from MITM to the real destination. This is exactly how Bluecoat or Cisco recommend deploying their proxies, with an internal SSL CA providing the cover to prevent browser warnings to users.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2019