https://bugzilla.mozilla.org/show_bug.cgi?id=1567114 Since today all Internet providers in Kazakhstan started MITM on all encrypted HTTPS traffic. They asked end-users to install government-issued certificate authority on all devices in every browser: http://qca.kz/ Actual results: MITM attack: https://i.imgur.com/rFEjXKw.jpg Message from Internet provider, requires to install this CA: https://i.imgur.com/WyKjOug.jpg Proofs: https://atlas.ripe.net/measurements/22372655/#!probes Official site with root CA: http://qca.kz/ Links to certificates: http://qca.kz/qazca.cer http://qca.kz/qazca.pem http://qca.kz/qazca.der ___ Della questione si sta anche discutendo qui: https://groups.google.com/forum/#!msg/mozilla.dev.security.policy/wnuKAhACo3... Giacomo