Yeah, sometimes people just make some astoundingly bad decisions.
Privdog has been designed to block certain trackers and advertisement from showing up while you browse the Internet. It blocks all advertisement that is not hosted directly on the domain you are visiting and replaces it with AdTrustMedia advertisement.
What's worse however is the fact that it installs a certificate on the system as well. While it does not share the same key on all installations, it has an arguably even bigger flaw than that: it intercepts all certificates and replaces them with one signed by its own root key.
All in this regard means valid and invalid certificates which in turn means that the browser you are using accepts any certificate regardless of whether it is valid or not.
I have no words for this incredible level of stupidity.
(Score: 4, Interesting) by kaszz on Tuesday February 24 2015, @05:54AM
Interesting tweet from that "KingTherapy"..
COMODO Certification Authority - Never trust [twimg.com]
DoD CLASS 3 Root CA [twimg.com]
People.. time to downsize your browser list of trusted CA. And hunt for CAs that will be accepted that is not in that list, ie backdoors.