Search:  

 
theme to black backgroundlet page decide theme
HomeFind ServiceReviewsISP NewsFAQsForumsToolsDatabaseAbout 
 
   All ForumsHot TopicsGallery






how-to block ads


 
Forums » New Firefox Extension Thwarts MITM Attacks » Am I missing something?
Search Topic:
 Share Topic:
RSS topic:
toggle:
flat / full
normal / watch
Post a:
Post a:
« Must have Firefox 3 to try it out  
AuthorAll Replies


knightmb
Everybody Lies

join:2003-12-01
Franklin, TN
·AT&T DSL Service

reply to cdru
Re: Am I missing something?

said by cdru See Profile :

So how does having this "notary" prevent a man in the middle attack? If there is a man in the middle between me and my bank, for instance, why can't that same man be between this notary and my bank?
It's based on the system of "how have things been" and "how have thing changed".

If your bank has always used the same certificate that doesn't expire for 8 years and one day at a coffee shop, the certificate has completely changed, but still "valid" as a MITM attack would do, it throws up an alert. I won't protect you from a MITM attack on the first ever visit to your banking website, only those afterward.

It's part of the problem computers have that humans tend to be better at. That's complete trust of strangers. If things look fishy, we get suspicious. Computers, they don't care, if 2 > 1, then they are happy. For us, when we see 2 > 1.5 we ask why 1.5 instead 1 like before?
--
Fight NebuAD and the like:
Click Here to pollute their data
to forum · permalink · · 2008-08-26 11:40:50 · Reply to this


Viper007Bond
Premium
join:2002-09-26
Portland, OR		 Actually, it would protect you on the first connect assuming someone else has connected to the site before. The trusted servers keep a history of known certs over time.
to forum · permalink · · 2008-08-26 22:18:44 · Reply to this
-
Forums » New Firefox Extension Thwarts MITM Attacks« Must have Firefox 3 to try it out  

Thursday, 10-Dec 03:35:34 Terms of Use | Privacy Policy | Hosting by www.nac.net - DSL,Hosting & Co-lo | feedback | contact
over 10 years online! © 1999-2009 dslreports.com.
page compression OFF
Most commented news this week
· [200] Sprint Sued For Distracted Driving Death
· [116] AT&T Launching New 24 Mbps U-Verse Tier
· [82] 3G Network Test Says AT&T Is Tops
· [72] Mediacom Unveils 105 Mbps Pricing
· [66] Sprint Poised For A Turnaround?
· [66] WPA Cracker: Test WPA-PSK Networks In 20 Minutes
· [66] AT&T Hints At Usage-Based iPhone Data Pricing
· [51] The Future Of Wi-Fi Is Bright
· [47] Site Leaks Yahoo, Verizon Fed Data Share Pricing
· [45] Microwaving Your Innards Is Not 'Extreme'
Most people now reading
· 3.x Feral Druid - Bear Tanking Guide [World of Warcraft]
· Battered Hilt Delimma [World of Warcraft]
· Cross Server Dungeon Experience [World of Warcraft]
· Windows 7 boot manager editing questions [Microsoft Help]
· Comcast refused to install 400' feet. [Comcast HSI]
· [ Classes] Druid tanking: rotation and glyphs [World of Warcraft]
· Official "Invite" thread Part 3 - ALL INVITES GO HERE ! [Filesharing Software]
· Man Downloads Child Porn "Accidentally," Faces 20 Years [Security]
· Connecting to Google Voice Via SIP [VOIP Tech Chat]
· The aftermath [World of Warcraft]