Comment Re:read carefully (Score 1) 140
Apparently SSL encryption at all of the large internet corps is handled by dedicated front-ends - and the network between the SSL front-ends and the real guts of entities like facebook, google, etc are all in the clear. That makes for a perfect location for the NSA to drop their sniffers in, no need to compromise any SSL certs at all, no forward secrecy, etc, just wide open traffic perfect for raw harvesting.
Even if they are using SSL between the front end and the middle tier, self signed certs are probably used between those layers and its "game over" anyway in that case.