What to do if the provider makes a certificate substitution?

S

Seryoga2017-02-05 21:43:19

Digital certificates

Seryoga, 2017-02-05 21:43:19

Greetings. I use QWERTY provider (Moscow). Recently, Kaspersky began to issue the following message:

in detail:

As I understand it, the QWERTY provider for some reason somehow replaces the certificate for the Pushbullet extension of the Google Chrome browser. How can this be avoided? How bad is it and what threatens?

Reply

Answer the question

In order to leave comments, you need to log in

3 answer(s)

D

Dimonchik, 2017-02-05
@sirocco

forum.qwerty.ru/index.php?showtopic=367078
see last comment

W

Wexter, 2017-02-05
@Wexter

Use a VPN. It threatens that your ISP, or someone else with access to the provider's key, can view encrypted HTTPS traffic

C

CityCat4, 2017-02-06
@CityCat4

Greetings from Roskom ... apparently. The provider tries to conduct MiTM in order to view the contents of secure connections. This is a normal practice for corporate networks, but home providers usually do not indulge in this.