Change man-in-the-middle back to machine-in-the-middle

joefarebrother · joefarebrother · commit e9f9e681efaa · 2022-08-05T12:56:21.000+01:00
(gender-neutral language) This reverts commit d5ab330.
diff --git a/java/ql/src/Security/CWE/CWE-295/ImproperWebViewCertificateValidation.qhelp b/java/ql/src/Security/CWE/CWE-295/ImproperWebViewCertificateValidation.qhelp
@@ -5,7 +5,7 @@
 <overview>
 <p>
 If the <code>onReceivedSslError</code> method of an Android <code>WebViewClient</code> always calls <code>proceed</code> on the given <code>SslErrorHandler</code>, it trusts any certificate. 
-This allows an attacker to perform a man-in-the-middle attack against the application, therefore breaking any security Transport Layer Security (TLS) gives.
+This allows an attacker to perform a machine-in-the-middle attack against the application, therefore breaking any security Transport Layer Security (TLS) gives.
 </p>
 
 <p>
diff --git a/java/ql/src/Security/CWE/CWE-295/ImproperWebViewCertificateValidation.ql b/java/ql/src/Security/CWE/CWE-295/ImproperWebViewCertificateValidation.ql
@@ -1,6 +1,6 @@
 /**
  * @name Android `WebView` that accepts all certificates
- * @description Trusting all certificates allows an attacker to perform a man-in-the-middle attack.
+ * @description Trusting all certificates allows an attacker to perform a machine-in-the-middle attack.
  * @kind problem
  * @problem.severity error
  * @security-severity 7.5
