Is SSL data still encrypted if there is a certificate error?

ssl ssl-certificate

Solution 1:

The data is still encrypted. However, the endpoint has not been verified. So, the data is "secure" in that it's encrypted over the wire. However, you might be sending it to the wrong person if the certificate doesn't match up properly...

Solution 2:

What is the value of an encrypted connection if you haven't identified the party on the other end?

Say you want to send your credit card information to Amazon. Say you have a secure connection, but you don't know if it's to Amazon or to an attacker who is impersonating Amazon. Sure, you could send the credit card, and it would be encrypted, but you have no idea what party holds the keys to the encrypted data. So the encryption is of minimal value.

It will, however, protect you against a purely passive attacker. Nobody who is merely listening could decrypt the data.

Related

What to do if wget's progress:mega doen't cut it anymore?
`tail -f` sometimes stops updating - and the file hasn't moved
Where is the sudoers file on Solaris?
Is it dangerous to change the value of /proc/sys/net/ipv4/tcp_tw_reuse?
What KVM disk type to use?
Best practice for automated Linux updates
Can I change the ownership of all the files of a specific user?
Alias a linked Server in SQL server management studio?
How to make options(width = 60) persist across code chunks in R Markdown used as notebook in RStudio?
Typescript CRA with MSW: failed to parse source map
How to pass table name in read_sql_query
What is at the beginning of an array object in C#? [duplicate]