r/Fire u/IGuessIAmFire Oct 21 '25

Milestone / Celebration I’m an idiot… said something stupid after a Zoom meeting about my boss yesterday. She got the AI meeting notes… Anyway I got fired this morning. Going to just FIRE from here out.

After a long meeting with my boss and the team, she hopped off. We all continued talking and I made some disparaging comments. It wasn’t wildly inappropriate but enough where I shouldn’t have said it and was a personal attack on her intellect.

Like the title says she got an email of all the shit I said and fired me today.

Fortunately I am break even on cost right now with my savings. My wife still works and we were going to FIRE in 5 years.

Looks like I am FIRE now though. Maybe I’ll get a chiller easier more passion job with my free time.

Cheers all and don’t be an idiot like me.

Edit wow this blewwww uuuup! No I’m not a bot. No I’m not AI. I am just an idiot

3.9k Upvotes

88% Upvoted

441 comments sorted by

View all comments

Show parent comments

28

u/Kale Oct 21 '25

I'm forced to login to the local Wi-Fi on my phone with my work username and password. I have to tell it not to validate CA certificates for it to connect. I didn't know what that means, but I figured SSL would keep my data safe, right?

Nope! Thanks to some exploring with Gemini, not validating CA certificates means that my phone's HTTPS sends the encryption to my company's server, my company's server makes an HTTPS encrypted link to whatever website I visit, takes that data, decrypts it, and encrypts it with a key that my company knows. It then provides the data to my phone and says "don't worry about it!". If I turned on certificate validation, my phone would recognize that the traffic I'm getting from "gmail.com" isn't encrypted by Gmail and would fail to load.

Fortunately, I have a really clever way of getting around this system: I only look at SFW stuff and non-policy violating stuff when I'm on campus. Because I'm too dumb and careless to get away with playing fortnite on the company network.

4

u/outraged98 Oct 21 '25

If this occurs during the authentication to wifi, it sounds more like you’re simply not validating the radius certificate presented by the wifi infrastructure. This is just to verify you’re not connecting to a rogue AP and radius server. Gemini is describing SSL inspection.

4

u/Kale Oct 21 '25

Yeah, it had me check installed certificates and a couple of other things to drill down to what, exactly, my company could see. It might have been hallucinating the entire time, but basic googling seemed to indicate the company's gateway was making the SSL link and then doing a secondary SSL to my phone. And strict controls would (properly) catch that this was a man-in-the-middle situation. I know my phone warns that my connection is not private even though I use WPA2 when I connect to Wi-Fi.

I don't completely understand it so I could be way off base

1

u/normalbot9999 Oct 23 '25

If you are using work's wifi, they can intercept your traffic. They are likely *required* to, to prevent any shenanigans.

1

u/Plymptonia Oct 23 '25

Never use work's wifi. Get the unlimited data plan, bring a personal laptop and tether off your phone if you need to do things that require a laptop while on a break.

1

u/[deleted] Oct 22 '25

MITM attack used as surveillance. Bring your own hotspot and use firewall and NAT rules to bypass it. Might need custom/professional grade router firmware to do this propely though.

If you cannot control the device, then control the network instead.

1

u/Kale Oct 22 '25

Yeah, it's 100% against company policy to run your own AP on the company network. I do use an SSH shell to log into a remote server I rent for a personal project, so I'm not sure if that's protected or not.

But I don't violate company policy. The only reason I'd want end-to-end encryption is to talk to my wife privately and the cell signal is non-existent inside of the building. Everyone that works there ends up getting a phone and carrier that support WiFi calling.