+- Forums (http://typeright.social/forum)
+-- Forum: General Forums (http://typeright.social/forum/forumdisplay.php?fid=12)
+--- Forum: General Talk (http://typeright.social/forum/forumdisplay.php?fid=13)
+--- Thread: Observation about SSL when I worked with it in 2007 (/showthread.php?tid=540)
Observation about SSL when I worked with it in 2007 - craig - 03-12-2026
I wanted to reply here about to your post on youtube on SSL.
At my job I learned an interesting aspect of SSL. The browser can show a connection as ‘secure’ to a remote host even when traffic is routed through a proxy—provided the client has the appropriate certificates installed. In this setup, the proxy can decrypt and access all unencrypted data. This technique is often used by organizations, such as HR departments, to monitor employee web activity.
So, when the browser shows the padlock it could be the remote host or any of the entities which have root CA certificates installed. I checked my Windows 11 machine and it has 66 root certificate authorities. If any one of these is compromised, an attacker could intercept and inspect your traffic without your browser showing any warning.
I'd only trust SSL for online shopping and nothing else.