Re: What are the dangers of installing Fiddler's certificate under Trusted Root?

[EricLaw]

Excerpt from my new book:

These warnings are deliberately verbose and scary, but the actual level of risk is minimal. Each Fiddler root certificate is generated uniquely per-computer, which improves security by ensuring that no other Fiddler user has the same root certificate. As such, the root certificate could only really be abused by malware running on the local computer, and if your computer is already infected by malware, you have bigger problems to worry about.

On Friday, July 13, 2012 3:05:46 AM UTC-7, Maglez wrote:

Hello,

If I moved the DO_NOT_TRUST_FiddlerRoot certificate from my Personal location to the Trusted Root Certificate Authorities... Is there any possible danger on doing this?

Could someone create a website that try to exploit the use of this certificate?

Right now I don't have enough privileges on my work machine to move the certificate so I will need to ask my network administrator and he may not be too happy on allowing me to do this with a certificate that says DO_NOT_TRUST. I need to offer him some reassuring.

Thank you.