On Sun, 11 Apr 2021 18:51:20 +0200 <to...@tuxteam.de> wrote: > On Sun, Apr 11, 2021 at 12:16:55PM -0400, Celejar wrote: > > On Sun, 11 Apr 2021 12:51:13 -0300 > > Eduardo M KALINOWSKI <edua...@kalinowski.com.br> wrote: > > [...] > > > > What happens when you try to access https://letsencrypt.org/, which is > > > signed by the same CA? > > > > It connects fine. And you've just given the the clue to figure this > > out: on my system, the certificate is issued by Cisco Umbrella, not > > Let's Encrypt! > > [...] > > Woah. > > I tried to look this up. After I got past Cisco's carpet-spamming > of search engines, what this umbrella thing seems to do is to > play man-in-the-middle! > > Umbrella. Gotta remember that name. > > Thanks to all for teaching me something :)
Hey, look at the bright side: this is a classic example of HTTPS / HSTS architecture working exactly as it's supposed to! Celejar
