Search Mailing List Archives

Limit search to: Subject & Body Subject Author
Sort by: Reverse Sort
Limit to: All This Week Last Week This Month Last Month
Select Date Range     through    

[liberationtech] Nokia's MITM on HTTPS traffic

Collin Anderson collin at
Thu Jan 10 06:48:26 PST 2013

The words "Nokia" and "MITM" are bound to attract attention. There is a
substantive difference between this and CarrierIQ situation; the matter in
question is a common, although older, trend that is certainly not limited
to the browsers in question. Pages are rendered by a third party for a
number of reasons: 1.) the device is underpowered and probably cannot
support all the scripts and images of modern webpages, 2.) this enables
Flash and other third party plugins not available for the platform, 3.)
saves data costs, 4.) this acts as a web proxy, allowing the device to
access content filtered in the country. Perhaps the failure is explaining
the privacy implications to the user, but other than that, this is not news.

On Thu, Jan 10, 2013 at 6:13 AM, Rich Kulawiec <rsk at> wrote:

> h/t to Lauren Weinstein via his "nnsquad" mailing list.
> Writeup:
> Original:
> Question: does there exist a coordinated/organized/systematic effort
> to test all extant phones for this and similar problems?  Because as
> this and CarrierIQ demonstrate, we certainly can't trust the vendors
> or the telcos.
> ---rsk
> --
> Unsubscribe, change to digest, or change password at:

*Collin David Anderson* | @cda | Washington, D.C.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <>

More information about the liberationtech mailing list