Interesting. Apparently, both #Hetzner's and #Linode's German datacenters were... - Germany

scy, 7 months ago (edited 7 months ago)

Interesting. Apparently, both #Hetzner's and #Linode's German datacenters were used to #MitM connections to jabber.ru servers hosted there. There's a detailed postmortem here:
https://notes.valdikss.org.ru/jabber.ru-mitm/

I'd take these allegations with a grain of salt. But I must say that MitM'ing with a #LetsEncrypt certificate and then forgetting to renew it, leading to discovery, sounds like the most German law enforcement thing ever.

via https://devco.social/@ripienaar/111268338360338392

#Germany #Russia #jabberRU #jabber_ru

reply

report

activity

copy /kbin url

copy original url

open original url

Loading...

+ Sh4d0w_H34rt, lennybacon, grrrr_shark, lanodan +2 more

Image

Image alternative text

scy, 7 months ago

A very good (but also pretty long) post on how this attack could have possibly been detected and probably been mitigated:
https://www.devever.net/~hl/xmpp-incident

via https://chaos.social/@lasagne/111273031750419721

#Hetzner #Linode #MitM

reply

report

activity

copy /kbin url

copy original url

open original url

Loading...

matthegap, 7 months ago

@scy Could be an oversight, could also very well be intentional on Hetzner's side to subvert an imprecise wiretapping order ("they only forced us to setup and run the mitm host, not to update it")

reply

report

activity

copy /kbin url

copy original url

open original url

Loading...

scy, 7 months ago

@matthegap Hm. Valid point actually.

reply

report

activity

copy /kbin url

copy original url

open original url

Loading...

Add comment