1 comment

[ 3.2 ms ] story [ 8.8 ms ] thread
Imagine if you tried to submit your credit card number to a legitimate HTTPS page, but a MITM forced the connection to fail, and then your browser retried the submission over insecure HTTP. That feels like the equivalent of this problem.