There is now MITM on HTTPS traffic in Kazakhstan.
But for MITM to work, other than installing the certificate, there has to be someone proxying the request, right? Will that role be played by the ISPs?
Say I want to connect to Facebook. Does the proxy spoof Facebook's certificate?
How does that work?
Accessing Facebook under the MITM scheme and looking at the certificates from the browser, would the MITM certificate be visible?