MITM 24/7 How can get rid of him - Browser ssl security fails
by walker from LinuxQuestions.org on (#4RWQ0)
I guys,
due to financial information I do daily to avoid that people could be scammed I'm continuosly under MITM attack i.e. when I try to connect to plurk.com instead of the true certificate
$ openssl s_client -servername *.plurk.com -connect plurk.com:443 | openssl x509 -fingerprint -noout
depth=2 C = GB, ST = Greater Manchester, L = Salford, O = COMODO CA Limited, CN = COMODO RSA Certification Authority
verify return:1
depth=1 C = GB, ST = Greater Manchester, L = Salford, O = COMODO CA Limited, CN = COMODO RSA Domain Validation Secure Server CA
verify return:1
depth=0 OU = Domain Control Validated, OU = PositiveSSL Wildcard, CN = *.plurk.com
verify return:1
SHA1 Fingerprint=B1:2B:73:69:E9:59:D1:AC:F6:C5:37:5B:DE:2A:0D:2A:F7:E5:BF:05
checked also with a third party site
B1:2B:73:69:E9:59:D1:AC:F6:C5:37:5B:DE:2A:0D:2A:F7:E5:BF:05 GRC returned fingerprint
I receive a fake certificate
1B:9D:F5:BA:B5:D8:57:1D:1F:78:8E:EA:48:16:83:24:B3:F5:B3:4F fake fingerprint receveid
Firefox accept to connect to the attacker not considering that certificate is fake also if Query with OCSP responder servers is enabled.
Palemoon instead correctly shows the warning that site is untrusted.
Is there a way to get rid of the man in the middle and connect to the real site?
Many thank to everyone for the support.
due to financial information I do daily to avoid that people could be scammed I'm continuosly under MITM attack i.e. when I try to connect to plurk.com instead of the true certificate
$ openssl s_client -servername *.plurk.com -connect plurk.com:443 | openssl x509 -fingerprint -noout
depth=2 C = GB, ST = Greater Manchester, L = Salford, O = COMODO CA Limited, CN = COMODO RSA Certification Authority
verify return:1
depth=1 C = GB, ST = Greater Manchester, L = Salford, O = COMODO CA Limited, CN = COMODO RSA Domain Validation Secure Server CA
verify return:1
depth=0 OU = Domain Control Validated, OU = PositiveSSL Wildcard, CN = *.plurk.com
verify return:1
SHA1 Fingerprint=B1:2B:73:69:E9:59:D1:AC:F6:C5:37:5B:DE:2A:0D:2A:F7:E5:BF:05
checked also with a third party site
B1:2B:73:69:E9:59:D1:AC:F6:C5:37:5B:DE:2A:0D:2A:F7:E5:BF:05 GRC returned fingerprint
I receive a fake certificate
1B:9D:F5:BA:B5:D8:57:1D:1F:78:8E:EA:48:16:83:24:B3:F5:B3:4F fake fingerprint receveid
Firefox accept to connect to the attacker not considering that certificate is fake also if Query with OCSP responder servers is enabled.
Palemoon instead correctly shows the warning that site is untrusted.
Is there a way to get rid of the man in the middle and connect to the real site?
Many thank to everyone for the support.