After installing the mitmproxy CA certificate in a client system, you get an error in the client application stating that the website certificate is invalid. Depending on the browser used, the errors may include:
- The certificate is not trusted because the issuer certificate has expired.
- This certificate has expired or is not yet valid
When CERT Tapioca restarts the mitmproxy capture via
.mitmproxy directory is copied from a static copy provided by Tapioca. This CA certificate expired on July 10, 2016 for CERT Tapioca 1.0.
rm -rf ~/.mitmproxy
~/.mitm.sh script to not copy over the
#!/bin/bash #cp -a ~/.mitmproxy_CA/* ~/.mitmproxy sudo ~/iptables_mitmproxy.sh mitmproxy -T -w ~/logs/flows.log
This can be done by commenting out the first line that begins with
cp, or by removing it.