Yes, but you're then reliant on the proxy to do the validation for you. | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		voltagex_ on July 30, 2012 \| parent \| context \| favorite \| on: Do you check HTTPS certificates in your API client... Yes, but you're then reliant on the proxy to do the validation for you.

ctz on July 30, 2012 [–]

And for the proxy's private key (which you are henceforth relying on for all transport security) to be kept secure. Given my recent experience with products like websense, this is a very poor bet to make.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact