Comment by mcpherrinm

Comment by mcpherrinm 13 hours ago

0 replies

View on Hacker News

well, unless both client and server have sufficiently weak crypto enabled that an attacker can break it during the handshake.

Then you can MITM, force both sides to use the weak crypto, which can be broken, and you're in the middle. Also not really so relevant today.