[cryptography] Gogo inflight Internet uses fake SSL certs to MITM their users

Jon Callas jon at callas.org
Thu Jan 8 18:22:15 EST 2015


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256


On Jan 6, 2015, at 8:34 AM, shawn wilson <ag4ve.us at gmail.com> wrote:

> You can smartly limit resolution in squid - I don't trust this is what
> they were doing, but you could provide a better experience like this.

It is what they are doing. I am an unhappy (for many reasons) regular (for many other reasons) Gogo customer, and noticed pretty quickly when they started doing it. I looked at their certs and it's an awful-user-experience way of blocking videos, and I strongly suspect that the rotten user experience is the intent.

	Jon



-----BEGIN PGP SIGNATURE-----
Version: PGP Universal 3.3.0 (Build 9060)
Charset: us-ascii

wsBVAwUBVK8RMfD9H+HfsTZWAQidnwf9EsXGOIyf1gUq7b2o92SFOdENxhmc0b3H
/7NTBm1beKwq6LA6nwxrl8zunfuxNRVKn9ZCfyCteE+2mpzafFrxHubBPbKcffRX
motiqHmNs6nYrVNNbZe7BCbb6ds23gFuwREe8wPVrCplWz9n65hm+pf7FBhDlVwr
OMsVcMt6yGffnYOZhv/apbRPEUwj+ltkI0RKybAwxnEFDORcKto/MOckClKcbC60
RSAxt7r/R5GOUpCddAPXAI5o9rz6Rd6RsGEgVccnjmYMg/uj0Eb8Ko31GR702uX0
VklDxdH8HCzfkNpgewx7oLktsW1FxTqPsHxfiZPyiEv1uN9pdit+SA==
=UzPn
-----END PGP SIGNATURE-----


More information about the cryptography mailing list