On Wed, 28 Jan 2009 13:18:10 +0100 André Warnier <aw@xxxxxxxxxx> wrote: > But any MITM attack would first have to start by corrupting the DNS > system anyway, which should not be that easy, or is it ? > (excepting phishing of course) A network admin (e.g. an ISP) can insert their own transparent proxy. Or require all users to configure a proxy. -- Nick Kew --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx