Answer the question
In order to leave comments, you need to log in
N
N
Newbie22019-06-14 08:18:37
Newbie2, 2019-06-14 08:18:37
Can the VPN provider through the certificate decrypt https?
Hello!
There is a VPN connection to the organization. To identify a user, the following user certificate is used: The 
following root certificate was installed with it: 
Attention, the question is: does the VPN provider (organization) have the ability to see the full address bar and data transmitted to / from sites via https?
2 answer(s)
@Newbie2
@Radjah
C
CityCat4, 2019-06-14 @Newbie2
If you have a CA certificate issued by the supplier in your root, it can. Bumping certificates + transparent proxy - and you, well, you won’t guess anything - but on many sites you won’t even notice that in fact you are being substituted with a certificate generated by the supplier.
I have repeatedly repeated a very simple truth - only a VPN built between you and your own VPS in Zabugoria is safe. For all the rest - there is no guarantee that you are being protected from something, but no matter how worse they did it :)
Fictitious security is worse than no security at all
R
Radjah, 2019-06-14 @Radjah
Do not confuse the website certificate with the VPN server certificate.
The VPN server certificate is used to establish an encrypted channel between the VPN server and the client.
The site certificate is used to encrypt data transfer between the browser and the http server.
The second is transmitted inside the first and is in no way connected with each other in terms of encryption.
Similar questions
R
Roman Polyansky2015-11-12 09:46:48
Is it possible to change the connection ip of the program?
1Reply
V
D
M
S
Supremebeing2015-11-19 22:31:08
VPN/Proxy service hosting: HTTPS/SOCKS5 over NAT, is it realistic?
1Reply
Didn't find what you were looking for?
Ask your questionAsk a Question
731 491 924 answers to any question