https://chromium.googlesource.com/chromium/src/+/master/docs/security/faq.md#How... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		judge2020 on Oct 29, 2019 \| parent \| context \| favorite \| on: Xfinity Is Man-in-the-Middle Attacking My Internet https://chromium.googlesource.com/chromium/src/+/master/docs... > Chrome does not perform pin validation when the certificate chain chains up to a private trust anchor. A key result of this policy is that private trust anchors can be used to proxy (or MITM) connections, even to pinned sites.

jimktrains2 on Oct 29, 2019 [–]

I was going off remembering this.

> Late on December 24, Chrome detected and blocked an unauthorized digital certificate for the "*.google.com" domain.

https://security.googleblog.com/2013/01/enhancing-digital-ce...

LocalPCGuy on Oct 29, 2019 | [–]

Pretty sure chrome has it's own code to detect Google certs and report invalid ones back to Google.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact