Kazakhstan government is now intercepting all HTTPS traffic

Discussion in 'privacy problems' started by mood, Jul 18, 2019.

  1. mood

    mood Updates Team

    Joined:
    Oct 27, 2012
    Posts:
    17,448
    Kazakhstan government is now intercepting all HTTPS traffic
    Kazakh government first wanted to intercept all HTTPS traffic way back in 2016, but they backed off after several lawsuits
    July 18, 2019

    https://www.zdnet.com/article/kazakhstan-government-is-now-intercepting-all-https-traffic/
     
  2. pandorax

    pandorax Registered Member

    Joined:
    Feb 14, 2011
    Posts:
    375
    Seriously? :shifty:
     
  3. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    12,161
    Location:
    Here
    wow, just wow... this is getting crazy.
     
  4. Reality

    Reality Registered Member

    Joined:
    Aug 25, 2013
    Posts:
    1,137
    Isn't this becoming the norm? This same phrase and it's variants are repeated over and over, "for our protection". We just know this isn't true.
     
  5. mood

    mood Updates Team

    Joined:
    Oct 27, 2012
    Posts:
    17,448
    Kazakhstan is a test bed for the new nuclear option which could blow away all of our web security
    July 21, 2019
    https://mspoweruser.com/kazakhstan-...which-will-blow-away-all-of-our-web-security/
     
  6. xxJackxx

    xxJackxx Registered Member

    Joined:
    Oct 23, 2008
    Posts:
    5,197
    Location:
    USA
    No, it's a test bed to see how the public reacts. I expect some other countries are already doing this. Probably the U.S. and China for 2. Of course that is pure speculation but I really doubt that Kazakhstan is first in this.
     
  7. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    12,161
    Location:
    Here
    Kazakhstan's HTTPS interception efforts target Facebook, Google, Twitter, others
    https://www.zdnet.com/article/kazak...fforts-target-facebook-google-twitter-others/
     
  8. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    12,161
    Location:
    Here
    I expect that major browser vendors will blacklist those certificates since they are used for MITM and lower security of their users. :isay:
     
  9. mood

    mood Updates Team

    Joined:
    Oct 27, 2012
    Posts:
    17,448
    As Authoritarian Governments Surveil the Internet, Open Source Projects Decide How to Respond
    July 23, 2019
    https://www.vice.com/en_us/article/...o-respond-to-kazakhstan-internet-surveillance
     
  10. dogbite

    dogbite Registered Member

    Joined:
    Dec 13, 2012
    Posts:
    1,247
    Location:
    EU
  11. guest

    guest Guest

    there is a more effective way to pawn them, install the said certificate in a useless machine where you know you will do peanuts, and you will look as a good citizen then use an non-persistent anonymity OS for more sensitive stuff.
     
  12. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    12,161
    Location:
    Here
    Problem with this solution would be only that users probably won't be able to connect to internet as ISP will block all internet connections it can't backdoor. So an option will probably be using satellites to connect to internet which won't be controlled by ISPs.
     
  13. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    75,821
    Location:
    Texas
  14. mood

    mood Updates Team

    Joined:
    Oct 27, 2012
    Posts:
    17,448
    Firefox and Chrome Fight Back Against Kazakhstan's Spying
    August 21, 2019
    https://www.wired.com/story/chrome-firefox-kazakhstan-surveillance/?verso=true
    Mozilla: Mozilla takes action to protect users in Kazakhstan
     
Loading...
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.