Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Enterprise IT already regularly installs their own certs on their boxes to MITM all TLS. The have the means to DPI and shut this down, though they'll need a firmware update for their firewall box.



Yes, but it's much easier to just disable webrtc in browsers at installation time once (images, msi, etc) and be done with it.


Meanwhile, during covid, disabling webrtc might be tantamount to disabling your business.


If you have enterprise IT who can disable WebRTC in your browser settings, you have a helpdesk who can whitelist approved video conferencing tools.


They're talking about blocking it entirely at the router level.


yeah, I'm thinking long-term here.


Long term, they'll just add it to their DPI boxes.

WebRTC isn't going anywhere. If you have a sales department, you can't block it.


Doesn't chrome come with hard coded certificates in their executable? Sounds hard to do MITM.

https://sites.google.com/a/chromium.org/dev/Home/chromium-se...


It comes with it's own, but it is trivial to add your own via system policies.




Consider applying for YC's Fall 2025 batch! Applications are open till Aug 4

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: