dslreports logo
 
    All Forums Hot Topics Gallery
spc
uniqs
54

Matt3
All noise, no signal.
Premium Member
join:2003-07-20
Jamestown, NC

Matt3 to rahvin112

Premium Member

to rahvin112

Re: Simple solution

said by rahvin112:

There is a solution though. It's called TOR and it allows encrypted traffic to proxy servers through which you can browse the regular internet. I'm not aware of any exploit against TOR at this time that would allow man-in-the middle as it doesn't use the SSL chain of trust.

Tor is no solution, asshat torrenters and child pornographers have ruined the network.

As far as exploits, why, a simple Google search shows there is in fact an easy way to perform a man-in-the-middle attack, even of SSL encrypted traffic.
said by article :
He then mentioned all the passwords, and credit card numbers that SSLstrip was able to pull from Tor users and save in plain text (You don’t shop using Tor do you?).


»www.google.com/search?rl ··· e-middle

DataRiker
Premium Member
join:2002-05-19
00000

4 edits

DataRiker

Premium Member

If one uses their browser in default setting as intended, a Man in the Middle attack is not transparent and will fail.

Your browser will issue a warning saying the Cert does not match.

All the rest is FUD.