funsec mailing list archives
Re: SSL/TLS broken?
From: "Buhrmaster, Gary" <gtb () slac stanford edu>
Date: Tue, 10 Nov 2009 15:33:59 -0800
-----Original Message----- From: funsec-bounces () linuxbox org [mailto:funsec-bounces () linuxbox org] On Behalf Of Valdis.Kletnieks () vt edu Sent: Monday, November 09, 2009 8:33 PM To: rMslade () shaw ca Cc: funsec () linuxbox org Subject: Re: [funsec] SSL/TLS broken? On Mon, 09 Nov 2009 15:50:40 PST, "Rob, grandpa of Ryan, Trevor, Devon & Hannah" said:Ummmm, are we missing something? As far as I can see, this affects*any* kindof e-commerce, but I'm not seeing much discussion on it ...Yeah, it affects pretty much any SSL or TOS, so yes, basically all e- commerce. It's however mitigated by the requirement that you be able to MITM the connection.
So, you should be running a free anonymous proxy server? _______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
Current thread:
- SSL/TLS broken? Rob, grandpa of Ryan, Trevor, Devon & Hannah (Nov 09)
- Re: SSL/TLS broken? Dan Kaminsky (Nov 09)
- Re: SSL/TLS broken? Valdis . Kletnieks (Nov 09)
- Re: SSL/TLS broken? Dan Kaminsky (Nov 09)
- Re: SSL/TLS broken? Toralv_Dirro (Nov 10)
- Re: SSL/TLS broken? Buhrmaster, Gary (Nov 10)
- Re: SSL/TLS broken? Dan Kaminsky (Nov 09)
- Re: SSL/TLS broken? Larry Seltzer (Nov 10)