• @5dh@lemmy.zip
    link
    fedilink
    English
    302 months ago

    I’m sorry, but I don’t believe it is. Nearly all traffic is TLS. When this is attacked, you’d get TLS error. Am I missing something?

    • @AlecSadler@sh.itjust.works
      link
      fedilink
      English
      22 months ago

      There exist plenty of services on school campuses that send passwords in plaintext. There are services outside of school campuses that do, too. Hell, I’ve been able to bypass 2FA checks by just navigating around them, I don’t know what else to tell you, not everything out there uses the best security practices, so don’t assume that they do.