<rss version="2.0" xmlns:dc="http://purl.org/dc/elements/1.1/" xmlns:atom="http://www.w3.org/2005/Atom"><channel><title>Hacker News: psvz</title><link>https://news.ycombinator.com/user?id=psvz</link><description>Hacker News RSS</description><docs>https://hnrss.org/</docs><generator>hnrss v2.1.1</generator><lastBuildDate>Mon, 13 Jul 2026 05:36:50 +0000</lastBuildDate><atom:link href="https://hnrss.org/user?id=psvz" rel="self" type="application/rss+xml"></atom:link><item><title><![CDATA[New comment by psvz in "Encrypted traffic interception on Hetzner and Linode targeting Jabber service"]]></title><description><![CDATA[
<p>let's encrypt is a public non-profit, who would definitely assist in finding out how domain control verification (DCV) happened - somehow that obvious line of pursuit was missing from the investigation. The mystery of the MAC 90:de:01:49:76:ae is interesting though, but CIA-custom-Made NIC might be a bit superfluous as an idea. Linode (acquired by Akamai) might use something in-house designed and OEM-manufactured, so I wouldn't treat it as strong evidence. Talk to Let's Encrypt - that will likely unveil what happened.<p>Interestingly, search "90:de:01" in this page: <a href="https://www.cyberciti.biz/faq/howto-linux-configuring-default-route-with-ipcommand/" rel="nofollow noreferrer">https://www.cyberciti.biz/faq/howto-linux-configuring-defaul...</a><p>^^ looks like another victim VM of the alleged mysterious interceptor :-)</p>
]]></description><pubDate>Sat, 21 Oct 2023 14:58:47 +0000</pubDate><link>https://news.ycombinator.com/item?id=37967329</link><dc:creator>psvz</dc:creator><comments>https://news.ycombinator.com/item?id=37967329</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=37967329</guid></item></channel></rss>