Russia Just Created Its Own Certificate Authority.
Вставка
- Опубліковано 9 бер 2022
- In this video I discuss the certificate authority that the Russian government recently setup to avoid online sanctions, and what this means for the people that might be using it.
₿💰💵💲Help Support the Channel by Donating Crypto💲💵💰₿
Monero
45F2bNHVcRzXVBsvZ5giyvKGAgm6LFhMsjUUVPTEtdgJJ5SNyxzSNUmFSBR5qCCWLpjiUjYMkmZoX9b3cChNjvxR7kvh436
Bitcoin
3MMKHXPQrGHEsmdHaAGD59FWhKFGeUsAxV
Ethereum
0xeA4DA3F9BAb091Eb86921CA6E41712438f4E5079
Litecoin
MBfrxLJMuw26hbVi2MjCVDFkkExz8rYvUF
Dash
Xh9PXPEy5RoLJgFDGYCDjrbXdjshMaYerz
Zcash
t1aWtU5SBpxuUWBSwDKy4gTkT2T1ZwtFvrr
Chainlink
0x0f7f21D267d2C9dbae17fd8c20012eFEA3678F14
Bitcoin Cash
qz2st00dtu9e79zrq5wshsgaxsjw299n7c69th8ryp
Etherum Classic
0xeA641e59913960f578ad39A6B4d02051A5556BfC
USD Coin
0x0B045f743A693b225630862a3464B52fefE79FdB
Subscribe to my UA-cam channel goo.gl/9U10Wz
and be sure to click that notification bell so you know when new videos are released. - Наука та технологія
mental outlaw never fails to include anime gifs 💀
He's is Coomer Prime
@@thomzwiefler6305 he knows his audience
Come for the tech, stay for the waifus.
@@johnsmith8981 Kenny is mai waifu
Fr
I've always wondered how the internet would be in the Soviet Union, if it weren't dissolved. Guess we might know the answer soon
Look no further than China...
Soon soon...
Have a nice one...
Oddly enough, .su domains were never removed and they are still in use.
@ Not China this is different wne would be better
But this isn't the Soviet union? There is no Soviet union and the internet would actually be a good place.
Just to clarify. The padlock means "We are certain that you are connected to a site that has control over that domain name, btw the connection is encrypted". It doesn't mean "you are on a secure site".
This is mentioned in the vid, I just wanted to summarize.
Secure CONNECTION, not secure website. I am no disagreeing with you
same can be said about google or any other major website.
"We are certain that you are connected to a service that is presenting a certificate with a valid name (fqdn), and a trust chain which links to a root certificate that is trusted by your web browser"
Transparent corporate web proxies don't "have control over all internet domains", yet they can mitm-intercept all the web traffic from employees using company computers because of the above.
How do i know then if its a safe website?
@@aggressivetoast That's the neat part. You don't.
At the same this is pretty damn sketchy, it is also super sketchy how access to backbone technology is all in the hands of American tech companies "we don't like your country, now your entire population should not have access to being able to do banking securely, hosting, being able to make money online or anything"
Sketchy^n
The tech companies increasingly own all of us. This is just the next logical step of deplatforming. Now its happening against a whole country at a time lol.
Big Tech has overplayed its hand in using its power to punish. It’s dreams of being global systems have died now. Each economic zone will create its own systems.
Help Americans retake the big tech companies that our taxes paid/stillPaying for, let's make it FOSS. Amazon, Google, Apple, Microsoft and on have defrauded the American public and acted as an abusive "arm of government" such monopolistic practices are a violation of both domestic laws and international fair trade business laws. Anyway, be sure to let randoms or your pals know that US tax payers funded big tech, and we the people want our data out of the hands of Palentir and we want to FOSS the infrastructure that our taxes paid for. Amazon can go eat a bag of rolled quarters.
I feel bad for the average Russian civilian. It's not their fault they're stuck in a dystopian nightmare.
The truth comes out, he wasn't banned from posting for a week, but actually suffering from crippling Vtuber addiction. We've all been there
Bullshit... No one gets addicted to Vtubers for only a week.
@@TheSetkon lol
@@TheSetkon what's the allure of vtubers? I've seen things of them but I don't see how it's addicting
@@z3ro216 imagine women but funny
@@z3ro216 coomers like looking at anime girls
As a cybersecurity major, your videos help me apply what I learn to real scenarios, and I appreciate that you explain everything in a way it's easy to understand. Thank you!
I love when good knowledge is spread on the internet, gives me hope
this must be the new way to major in cybersecurity. the old way was to get arrested by the fbi
Except he's wrong and describing something that might have been possible 5 to 10 years ago. Because most correctly configured websites have CAA DNS records and HSTS.
Nice pfp
@@KnutBluetooth Can you explain more about that? He explained a lot of what I have to read in my textbooks so I assumed it was accurate. I am only in my first semester with this major so I don't know much lol
"that's like remembering the phone number of every single one of your friends. that doesn't make sense"
Damn that makes me feel old, as this is exactly what we did. It was common to have memorized two dozen or more phone numbers. Friends, family, work, etc.
It's just how things were before people became dependent on technology
@@nevermore3055 because telephones aren't technology lol
I still remember my childhood number and my first cell number and best friends number from like 6th grade, havent been in school for almost 20 yrs
@@annybodykila i know one of my oldr friends still remembers his home ph. number, his friends telephone numbers (home numbers) his mom's cell phone number from 15 years ago and a lot of other stuff LOL funny how our brain remembers the most useless things ever.
It's funny, I can still remember my friend's parent's home phone number but couldn't tell you my friend's cell phone number.
Russia anti-censorship security V.S. social media anti-censorship bypasses.
Special content operations*
"Just send me the virus link" A few days ago, someone I didn't know messaged me and I responded with "what is it today? gift cards of crypto?"
Hey, Escobar Cash is legit! 🤪
@@JamesWilson01 Don't talk shit on Hitlerwealth!
For those with the basic knowledge of SSL Certificates, http vs https and trust authority, Skip to 7:55 for the video in context of Russia.
It took me 6minutes and 57 seconds to get to your comment. Thanks for that minute of my time you saved
I needed the info, but upvoting for other big brains who don't need it.
FemonicRBLX I love you
Man you should do this on all videos
I think the major problem with this, is the fact that the user is forced to only use government specified browsers that can use the government created certificate service.....Sounds like an absolute monopoly with absolute power over what can be seen, posted, shared, and disseminated.... Seems like a perfectly dystopian internet experience....
Like google?
@@fallencrow6718 But imagine google actually having a whole an complete monopoly over all usable internet service.....Sounds Terrifying to me :(
You mean like the great firewall of china? Lol
@@FrogsRghey Yeah more like china.....
@@kryststar6800 more like Google actually
Fun fact many goverment websites from brazil do not have a certificate
Gov websites have gotten better but most of them are still shit here in brazil
Indeed
I wonder if I will make a carrer fixing the gov sites, or the way these are awfully made is intentionally designed by CIA.
Same for south korea as well
neither do russian sites i think
Governments often don’t shell out the bucks for the good web developers and instead get the lowest bidder.
I've legit been wondering how sanctions would affect CAs in Russia.
Wait a second. Do I know you aren't you pleroma or Mastodon?
Yeah
@@whitepaperkat67 yea, i had to double take when i saw him
@agapp11able and one year prior to that One who shall not be named made changes to the Constitution in order to protect children and Russian culture. And also to grant himself a lifetime diplomatic immunity among some other things.
Back in a day I thought he simply didn't want to answer for palaces tHaT aRe PhOtOsHoPeD aNd NoT fOr HiM aNd LoOk At *YoUr* GoVeRnMeNt FiRsT! But boy did I not expect political ambitions to really hit the fan. Damn.
@agapp11able kinda, but not really. Intellectuals are pretty much on the same page most of the time, while "common" people would be surprised, how much alike they really are, if it wasn't for the language barrier.
Apart from fetishizing suffering: Russian people take great pride in their ability to indure and overcome adversities and never yield or whine. Older generation, that is, I can't see this mindset being all that prevalent in the youth.
If you have any other traits in mind, that are more or less unique to Russian culture, I would appreciate your insights.
I think it has to do with newly (welp, 2012 sort of "new") discovered shale and slant gas deposits in Ukraine. Most of which are in Crimean exclusive economic zone and on the northwest of DNR. The peninsula itself is too expensive to hold with the Crimean channel blockage, hence the imperative to clear the dam and gain foothold by the Dnieper. The latter being the only natural border between Russia and Europe apart from Carpathian mountains, so we have the rest of the conflict: Donetsk and Lugansk won't last too long as buffer zones without it.
Russian economy can't afford big competitors in Europe, hence the blitzkrieg special gamble. All or nothing.
We'll never know for sure, what were the actual reasons, but at least this rationale helps me see some logic in what is happening. As horrible as it is.
1:25 “imagine trying to remember all the phone numbers for your friends… it wouldn’t make since”.
Me: well buddy back in my day…
Back in your day it still didnt make sense to do.
@@cmnidit4444 It happened simply due to the fact most people dialed numbers manually back then, so the number got cemented in your head anyway. And since calling was more prevalent, you dialed those numbers more often too.
If Russia can use this for a man in the middle attack, then so can the old certificate organisations from the US, and are doing this. Make a video on how to prevent the USA from making a man in the middle attack.
Exactly! All "Russia could do this bad thing, Russia could do that bad thing..." blah blah blah... That only means the US could have been able to do all those bad things all along for decades.
There'd be whistleblowers.
@@Moks89 Really ? Snowdens are few and far between. Most people involved in this kind of stuff love it and love to keep their mouth shut.
They just now thought to do that? I would have assumed this is something every country has, but then again I'm just a bigfoot so what do I know
I remember hearing about this back in Iran 10 years ago. They used a Dutch certificate authority to mitm Google users.
I wish we could move on to a better system than this.
I don't root for russia but at this point I'm not surprised anymore.
Russia is an analog world "root virus"
Who do you root for then?
FFS, geopolitical conflict isn't a game. You don't root for a team...
pun intended?
@@ereder1476 not my problem
1:53 DNS servers are rarely hacked, but if they would get hacked, then the attacker could just buy a certificate for the domain, and TLS is circumvented. You only need to demonstrate that you control a certain domain to buy a certificate for it. What TLS really protects against is man in the middle attacks, when the attacker hacks your network, or you're on an insecure wifi, or your ISP/government are hacking. I used to demonstrate that with rogue wifi APs with an SSID like McDonalds or something that people's phones will automatically connect to.
I'd recommend reading Christopher Soghoian's 2011 paper "Certified Lies" [edit: BE SURE to find an uncensored copy; the appendix includes some very damning supporting material, but many _academic_ sources omit it] to put a big asterisk on TLS' protection against governments; the tldr is there are so many intermediates that are so poorly run that it's nearly inevitable that the NSA has coerced a few into giving them either illicit certificates or the keys outright
@@codegeek98 and I think that it's highly likely Let's Encrypt has also probably given them at least read-only access, given how it's such a critical piece, with nearly everyone who's not straight buying their certs, using LE
@@jan_harald But Read-Only access means nothing. These days all certificate issuance is public information anyways thanks to "certificate transparency." (Except for illicitly-issued ones, I'm sure)
@@codegeek98 Yeah, the NSA can do pretty much anything, but at least it protects against other, less powerful APTs / resourceful and sophisticated adversaries, like the government of Kazakhstan as mentioned in the video. I believe it can protect against Russia as well. Probably not China, because they control the hardware.
@@joshuavillwo it means a LOT to have read-only access to your passwords and stuff, to any private messages you send via web chat, etc etc
certificate transparency tells you what CA issued what cert to who, and when, which is not what I'm talking about here
"Imagine remembering the phone number of all your friends.. that just wouldn't make sense."
This is how it was done before cell phones. I'm not even that old but I still remember phone numbers of some of my friends from elementary school.
They're note down in a notebook
Yes we never had a rolodex or a contacts book. We all memorized every number we needed.
Uhhhh, maybe you- as a kid- only had to remember them. functioning adults needed a contacts book however
The problem with this is that a single web site like youtube might have dozens of IP addresses, because they have load balancing servers all over the world. Maybe you remember the ip to the youtube server closest to you in seattle, but then you're going on a business trip to london and the ip you remember is now super slow.
Also, remember phone books? Those enormous books with a thousand huge pages? That's basically an analogue DNS server.
@@jakob4112 I am not saying that every single number was memorized. However, all close family members, family friends, etc were memorized numbers. My parents actually taught us kids to memorize the numbers in case there was a problem because that was "normal" at that time (2000s). My friends knew those numbers as well.
I do remember a little contacts book that also held the phone number for the doctor's office, dentist office, etc.
If I ever forgot someone's phone number I would just ask my parents and they would recite it to me. There are movies that reference this common behavior and older people I speak to mention old numbers that they still remember which are no longer relevant to them.
Russian here. First time hearing about this certificate thing ngl but was a nice watch. Thanks for the information not gonna ever install that crap
Russian here. And will install. And don't give a fuck.
@Valar Melkor not a single one I use asked for this so far so. Anyways prob gonna use VPN if anything, I proxy most of my traffic this days anyway
@@miyukoi probably won't be able to get around this one Ilyich.
@agapp11able >"made our own"
what, spyware? lmao at least with america you're out of reach legally, good luck with FSB on your ass at all times
that's some next-level cuckoldry
That was so well explained. I am glad I subscribed to this channel.
The anime gifs make this infodump easier to digest.
Stay a legend, man.
Dude, this was really good video. Well put together and packed with info. On a topic that I've wondered about for a long time too. Good job.
You're right.
1:23 "..it's like, imagine trying to remember the phone number for every single one of your friends. That doesn't make sense.."
Holy shit do I feel old now. First day of kindergarten we memorized our own home phone numbers, and then we always memorized the home phone numbers of our closest friends and family. I still remember like twelve different numbers from my childhood, some of which are out of service today!
In the early days of the internet we really DID have to know those long numerical IP addresses. In fact there was a booklet, sort of like a telephone directory that got updated a couple times a year with valid IP addresses and what site they would take you to.
Such a well put together video and that transition to Russia’s certificate was flawless. Thanks!
My school uses a proxy server that forces you to use it's certificate and apparently they are even expelling people who use VPNs.
Morale of the story: CAs are another political weapon, just like the rest of Big Tech.
Interesting, so what you're saying is that Russia is basically building it's own digital and financial infrastructure from the ground up which is more or less invalidating Western sanctions?
Exactly, quite soon it seems there will be a divided internet and financial system. One for the west and Europe and another for Russia China and Eurasia
China already has. Eventually, all the major economic zones will. They have seen how vulnerable they are depending on US tech.
It's all WEF/NWO agenda, y'all playing right into it. Dividing up the internet so that global communication becomes impossible. So you won't see the riots IN Australia or NewZeland or Canada or Ukraine etc etc. The same players from Downing Street are behind destroying your economies, this is by design and it doesn't take too much digging to hear this straight from their own mouths in recordings archived in places scattered throughout the interweb. Russell Brand been talking about some of the evidence coming out though, great channel for waking up normos.
@@VertegrezNox - And you think that a global system run by abusive US Big Tech is better?
@@pharder1234 - I predicted that some time ago. These are strategic industries now, and must be locally based.
Your explanations are on point! Ty!
Thanks for always sharing your knowledge. Learned a lot from your channel
And again, thanks for explaining everything to normies like myself. Much love 💕
More videos on SSL and certificate authorities please! I am very interested in learning more
Thanks for the video!
It was pretty interesting to watch!
Love these info segments. Thanks friend.
Watame sheep in the last vid, and now confused Fubuki... can't tell if Kenny fell through the Hololive rabbithole or if he's just spending too much time lurking on /g/ lately :p
The World Wide Web was born at the end of the 20th century, but I am starting to doubt it will survive the 21st 😔
I take major issue with citizens being punished for the actions of their leaders. Just remember that necessity is the mother of invention. With all of these sanctions from governments and big tech, the outcome will be that the Russian people will continue to march forward. What the world is doing right now will force Russia to develop all of this tech on their own - this will likely lead to more national pride, new products and services, and will diversify Russia's exports - in short these measures will make them stronger.
it seems like this was Putin's - or of whoever might be behind him - plan. He couldn't have not expected such an outcome.
Look china, the US banned them from ISS. But now china can made their own space station, meanwhile other countries still crying and depend to US for space programs
Looks like it... Russians anounced that they will beginn doing their own phones, laptops and other tech. And im sure after a few years they will manage to do it because they dont have other options. Even chinese phones are now more expensive in Russia.
there is already a whole history behind soviet era tech that makes me doubt it will really go that way
@@JhoTerra The Russian federation and the USSR are two different things. Also what was the problem with soviet technology?
very informative, thank you!
Based content
Based content
I feel like DigiCert & al. revoking Russian certificates in the first place was a huge,shortsighted mistake that just enabled them to do this. This outcome was inevitable, and what did it really accomplish aside from locking average people out of their online banking? Sanctioning Putin and his cronies, international transactions &c. is one thing, but denying everyday Russian people things like a secure connection to check if their paycheck has been deposited is just ridiculous and counterproductive.
Tbh, this also applies to the most of the western sanctions. For example, what does removing of apple pay and google play accomplish, aside from restricting devices that common russians did pay for? They probably just won’t trust those western companies anymore and rather buy chinese alternative or smth.
@@Th3_Revolution Definitely; it's petty and just fosters resentment.
thanks for the anime illustrations it helps the understanding
Thank you, very educational
Superfish was an example of certificates gone bad.
It’s important to realize that trust in a practical sense just means the issuing CA’s certificate is in your host os’s trust store. For windows that’s the crypto api (CAPI) store
Keep up the great work
thanks for info!
yay new Mental Outlaw upload!
edit: very informative as always, keep up with the great content o7
Mental Outlaw, is it true that Russia will legalise pirating? It would be huge ngl
There were some rumours, but the government refused to do so.
Just saw an article about how Russia might re-open all the Mcdonalds restaurants by lifting the trademark restrictions depending on how everything goes. It's def on the table I'd say.
The anomaly.
Do we proceed?
Yes.
He is still...
Only human.
@@Keepontakingit If they were smart, they'd just repurpose those restaurants to serve good food. Fuck McDonalds.
@@Keepontakingit And opening their doors to obesity?? Is better as they have it right now.
Great explanation!
👏You're crushing it
The more I learn about how much of a joke cyber security is, the more I'm coming to terms that just using cash for everything makes the most sense. I already suck at managing my personal life. Having to manage my cyber life like I need to be coding everything on Linux just seems too hectic for me. I'm better off fending off a mugger with my bare fists than I am trying to hide my tracks online for every little tiny thing when all I'm trying to do is just play some damn video games and watch videos lmao.
I'm surprised they don't have one yet. I live in a small country in eastern europe and we have a local company which runs an internationally recognized top level root CA, like included in windows. Ofc the company has deep ties with the local secret service and military and stuff.
👍Nicely explained! Cheers!
Is there a (relativelty easy) way to mark a certificate authority as partially trusted, so that, if i trust it or not, would vary on a site by site basis? Because, like, i would trust this new vertificate authority if i'm connecting to some russian government website, but not if i'm connecting to, lets say, youtube. Although, considering the levels of corruption, i wouldnt want to trust it even when connecting to govt websites, because i wouldnt be surprised, if, sooner or later, either the private key will be sold/stolen, or there will be a certificate(s), issued for a fake govt website(s). But i guess i wont really have a choice.
Use Yandex Browser for the govt activities.
@@OggerFN That only works if the program isn't reading them from a random pem file somewhere in the filesystem. Linphone (the SIP softphone app) likes to do that.
If you want to partially trust a CA on a site-by-site basis, you might as well just configure the browser not to trust the CA at all. Just add the website certificate into your trust Exception list.
You're going to have to decide the site certificate yourself anyway.
idk if that makes sense. If the cert is trustable for one site, its trusted for all, or trusted for none.
Use a VM.
Very clear explanation. Thanks
very well explained , nice one !
Hi from Russia. Don't worry, we are fine
Hail comrade
Still fine, tovatish
This was a rather long way of getting to the point that you've been man in the middling my youtube sessions.... I promise I just like art style
I once met a guy who was part of that chain. His job was sitting at home and making sure certain pages that appeared to him were secure and authorizing it. Seemed like a sweet deal lol
If I get hacked, they’ll see my mental outlaw addiction.
Comparing remembering IP addresses to remembering your friends phone numbers as being difficult? Oh how times have changed.
16:47 Using certificates from Chinese CAs is probably the best move, big tech will probably not do anything to those lol.
Don't think the Russians would want the Chinese to be able to spy on them though.
@@AceOfHearts1498 I didn't think of that, that's a good point.
@@AceOfHearts1498 Hey I just looked it up and apparently CAs don't store private keys of issued certificates, how would they spy on you then?
The moment the American big tech does a thing to those, it will be the end of apple, end of apple fanboys. No more iPoon. No more M1 MacBock toys for them. They will panic "OMG! Where is my iPoon?", "Oh no! I can't live without my iPoon! Give me iPoon Max Pro Now! I need it!"
homie when you pulled up citizens i nearly shit myself for a second
this vid oughtta be labelled 'educational' ...all current events aside, this seems like a good breakdown on how ssl works (/worked). Thanks.
Weeb shit at the start:
Bottom left: Yoshino Koharu (Sakura Quest)
Bottom right: Fubuki (hololive)
Top left: Karen Kujo (kiniro mosaic)
Bottom Middle: Kurumi Nanase (Menhera Shoujo Kurumi-chan)
Is there any firefox\chrome extension that's remembers dns number for bookmarks instead of it's http address? It would be helpful sometimes.
It's called a notebook. Return to monke.
browser already caches most stuff
You could just add them to your host file.
>dns number
The word you're looking for is IP address.
@@dankdreamz Yep, /etc/hosts is exactly that
Damn you explain the whole HTTPS and SSL better than my lecturer
I didn't understand anything but i watched the whole video still. Gotta support the homie.
Mental Outlaw is secretly a weebo.
secretly?! :o
I see, a Man of Culture
This analogy! 🤣🤣 "It would be like having to remember all of your friends phone numbers." Haha that's exactly what we used to have to do! I still remember my childhood best friends' home numbers.
Great information and advice.
Never thought I’d see the day mental outlaw mentions VTubers
The world : *tries really hard to punish russia for the 294th time*
Russia : Fine, I'll do everything myself
This is what they don't realise. They aren't dealing with Iran, north Korea or Cuba. Russia is massive and has all the materials and allies it needs to keep going without the west, whereas the west need these raw materials badly as they are reliant on them XD
@@LawrenceTimme Keep me posted about how russia will cope with computer chip embargo. ;)
@@FVBmovies we've survived 200000 years without chips, they will manage.
@Fihlippe Luhis You'd think country with 2x coups be smarter. Even China denied airplane parts to russia.
@@FVBmovies Putin's team will just squeeze out the last bit of money out of the country and leave to retire in their palaces in foreign countries. The ruin they'll leave behind doesn't concern them, and we, the young generation, will have to somehow put it all back together. I had no idea what to expect until recently... Now i think i understand. And it's not looking too good.
That vTuber addiction example hit so close to home, I had to hide under the table.
Would you do video on mesh network, like SSB protocol, so other nations can prepare for internet sanctions like this?
I live in Russia and even I didn't know that! Good job man
The thumbnails keep getting better and better.
Great info.
I still remember numbers from when I was a kid and there were no cell phones. I think you underestimate the human capacity to remember strings of numbers.Great explanation of https though!
as a computing student your videos are amazing.
as an artist, your videos are also amazing, more for the journalism.
you are definitely one of the best channels on youtube, and i constantly share your videos with my classmates.
Imagine you'd known how RU Internet segment works. Root certificates and authority centers exist here since 2000s - they are used for online trading, taxes, document signing (digital signatures). Surprise, its not only bears and vodka in Russia.
If when visiting a site, the government is able to redirect you to a page (in this case to notify you that you should be using this russian certificate, for example), doesn't that mean that they already have some kind of insight on you? Or is the attention there focused on the website rather than the user? I don't know if I'm making sense and I doubt I'll get an answer but that's my doubt. I like your videos, content like this is going to grow by mere necessity in the following years. You're like that person that teaches you about taxes after years of schooling failed to do so lol. Keep it up.
This is awesome
They actually have a list of domains that use the certificate, its the second button on the gosuslugi website that says CSV-something. Its mostly banks and government websites
That button says "download csv-file" and it isn't the list
@@shadesoftime csv is a microsoft excel document format
@@nullmind r/whoosh
@@shadesoftime am i too smart to understand this?
@@nullmind who knows, does that CSV file containing the domains that use the certificate? He seems not to believe so
In the United States there's already a rather large MITM operation, called "Cloudflare". You get the padlock and everything, but if you actually inspect the certificate, it isn't what you thought you were going to. Cloudflare is its own CA, Certificate Authority, and consequently it affirms that its customers are legitimate so you get the "padlock" symbol. So instead of going directly to a particular server, you are going to a *proxy* which inspects your packets and then re-packages them for transport to the actual server; and THAT link can be secured by the "real" server certificate or not secure at all.
When there's a malfunction in Cloudflare, customers make phone calls to banks and whatever but it isn't the bank's fault and indeed there's not really anything the bank can do about it.
"Fiddler" is a nifty diagnostic program that is a MITM proxy *right on your own computer* and it requires to install the Fiddler root certificate so that your browsers think they are talking to whatever but really they are talking to Fiddler. It makes possible to diagnose problems with websites that use HTTPS.
Cloudflare is not a MITM operation. It's primarily a DDoS mitigation company and it's been around for a *loong* time.
"Imagine trying to remember the phone number for every one of your friends, that doesn't make sense"
Ya know, I hear that people used to do this in the long long ago...
mental outlaw thank you
I'm your Russian viewer. This means we'll use one of those two shitty browsers for government websites and regular browsers for the rest of the Internet.
for this they use yandex browser - it is based on chromium, and it works very well, many people use it
@@ivagov5758 yeah, yandex and any chromium stuff is just a ram consumer, i won't install it just to use gosuslugi lol.
Hey man, wondering if you are going to make a video on DuckDuckGo's most recent announcment on twitter, to which I find ridiculous.
What was it?
@@straightupanarg6226 They are going to "rank down" searches that goes against their views, so basically they are becoming Google but with less budget and no selling points.
@@Rarog204 So trashy, I now I have no reasons at all to use this piece of s*.
@@PefectPiePlace2 duckduckgo is google search engine except it removes some manipulation.
If you want a real search engine use Yaccy.
@@HamguyBacon yaccy? Hmmmm
There is nothing more beneficial for the average citizens than a government that strives for economic independence.
Being able to produce basic necessities is a must for a strong independent nation.
If we have a truly free market then large companies will rule instead of the government.
@@lol-dm8wx I was talking about production a country that can function by itself is in a better position than one relying on other countries to survive.
Also the government has a monopoly on force and most major US corporations are buying that force for their own means. Which means those corporations are the ones currently running the show.
@@redrocket8062 ah
20 seconds in and there's already anime Gifs, keep It up))
Install another copy of Firefox, if you have regular Firefox already you can get Beta, Developer Edition or Nightly, install certificate, now you can chose if you want to get mitm by NSA or KGB. And if you think that NSA doesn't have keys from all the western CAs I got a bridge to sell you.
Or just take the portable version
I know right? Everything is so messed up on the way it's set up it's insane. I'm sure there are methods on encrypting packets without having a massive eye surveiling you but they are purposefully not implemented.
Hey there, Russian here, the majority of PC's on which this fucking pain in the ass certificate is installed belong to schools, I know it because I study in one of them and I'm also the one who does all the computer stuff and Linux magic (in Russian school GNU Linux prevails since windows needs licensing). You get extensive instructions along side with an order that you have to install this certificate. This guide includes instructions for Linux
В каком городе это вообще происходит?
@@4EJT В Вологодской области везде это точно
То есть, ты хочешь сказать, что у нас на большинстве школьных компудахтеров стоит линукс? ну насмешил, не поверю
@@frankiefrom80s80 ты когда в школе учился, динозавр? Русские люди не будут платить за Винду, а не лицензионную ос в школах устанавливать нельзя. Я не знаю насчёт Москвы, но Москва это не Россия, в моем городе во всех не платных школах Линукс, ещё встречал макось с Виндой через буткэмп, но они в меньшинстве
Есть ноуты, с которыми активированная винда идёт вместе, но они для ЕГЭ/ОГЭ в школе лежат, ну или для учителей
@@saveappitsme9554 не знаю, что на счёт остальной России, но во всех школах мск и спб я видел только винду. И сам заканчивал школу, в которой все компьютерные классы были оборудованы пк с виндой.
theyve been pretty pog recently with all kinds of tricks to tackle sanctions
I know a person who remembers everyone's phone numbers :D doesn't even save the numbers as a backup
Can you review that Russian Linux Distro?
This is gold for many of us political dissidents.
@@100c0c it will be good for western dissidents, think snowden. Its useful for them to leverage forces that cause instability in rival nations.
@@100c0c The point is that there will be a multipolar world order as countries like Russia and China start to have control over their own sphere of influence. The US government cant project power the same way that it used to in the 90's and early 2000's.