undefined | Better HN

0 pointseugenekolo2y ago0 comments

I don't know which users integrity checking the executable would be hostile against. But, I see your point that perhaps their reason for cert pinning is to defend against compromised CAs. It does fit the narrative better with their lack of obfuscation and other layers of defense on their app.

0 comments

kevincox2y ago

Stopping users from modifying the software they run is user hostile.

j / k navigate · click thread line to collapse

0 pointseugenekolo2y ago0 comments

I don't know which users integrity checking the executable would be hostile against. But, I see your point that perhaps their reason for cert pinning is to defend against compromised CAs. It does fit the narrative better with their lack of obfuscation and other layers of defense on their app.

0 comments

kevincox2y ago

Stopping users from modifying the software they run is user hostile.

j / k navigate · click thread line to collapse