dns entry/server make it possible to use a certificate from a different host?
E.g. I control evil.org and the dns server of my victim, could I make it look like I was google.com by using a faked dns entry and google's tls certificate?
Does that mean that DNS is one of the security factors in TLS?
How would you obtain google.com's TLS certificate tho
Обсуждают сегодня