site Search:


Home Reviews Tools Forums FAQs Find Service ISP News Maps About  
 
    All Forums Hot Topics Gallery






how-to block ads

  
Forums >

Broadband Tech > Security > Security > "perfect MITM"

Search Topic:
 Uniqs:
582		 Share Topic
Posting?
Post a:
Post a:
Links: ·Hijack This logs? ·Panda Free Tools ·Vundo Removal
AuthorAll Replies


swhx7
Premium
join:2006-07-23
Elbonia

"perfect MITM"

A researcher has found a way to effect man-in-the-middle attacks in which there is no apparent certificate mismatch from the user's point of view. Firefox 3 is affected.

Disclosure page; Slashdot discussion; user report.
to forum · permalink · 2008-12-23 12:19:46 ·


nwrickert
sand groper
Premium,MVM
join:2004-09-04
Geneva, IL
kudos:7
Reviews:
·AT&T U-Verse

This is not really a surprise.

The X.509 system appears to have been designed with the primary goal that of earning income for CA (certificate authorities). It's a rotten design.

It's time for the system to be redesigned. I'll suggest that web server developers and browser developers start coming up with an alternative based on PGP keys, as an alternative to X.509 certificates.

The basic problem is that the X.509 hierarchical trust model does not fit the real world. While PGP is not perfect, its "web of trust" at least is a better fit.
--
AT&T dsl; Westell 327w modem/router; openSuSE 11.0; firefox 3.0.5

to forum · permalink · 2008-12-23 13:33:39 ·
Forums > Broadband Tech > Security > Security

Thursday, 31-May 11:56:44 Terms of Use & Privacy | feedback | contact | Hosting by nac.net - DSL,Hosting & Co-lo
over 12.5 years online © 1999-2012 dslreports.com.
Most commented news this week
Hot Topics