Educause Security Discussion mailing list archives

Re: SKYPE - What's the latest in terms of Risk...

From: Chris Edwards <chris () ENG GLA AC UK>
Date: Fri, 21 Dec 2007 10:52:39 +0000

On Thu, 20 Dec 2007, Mike Corcoran wrote:

| Not True, at least in general.  The new firewall from
| PaloAlto Networks decrypts SSL traffic by doing a
| man-in-the-middle attack, and allows  you to filter
| even on encrypted traffic.  I don't know if there are
| any issues with Skype's SSL implementation, but PaloAlto

Hi,

AFAIK, Skype does not use SSL.  It uses it's own propriatory encryption
system.  Sometimes over TCP port 443.  Not it's not SSL.

Current thread:

Re: SKYPE - What's the latest in terms of Risk..., (continued)
- Re: SKYPE - What's the latest in terms of Risk... Scott Koger (Dec 20)
- Re: SKYPE - What's the latest in terms of Risk... Mike Corcoran (Dec 20)
- Re: SKYPE - What's the latest in terms of Risk... Terry Gray (Dec 20)
- Re: SKYPE - What's the latest in terms of Risk... Tristan RHODES (Dec 20)
- Re: SKYPE - What's the latest in terms of Risk... David Morton (Dec 20)
- Re: SKYPE - What's the latest in terms of Risk... David Gillett (Dec 20)
- Re: SKYPE - What's the latest in terms of Risk... Cal Frye (Dec 20)
- Re: SKYPE - What's the latest in terms of Risk... Randall C Grimshaw (Dec 20)
- Re: SKYPE - What's the latest in terms of Risk... Bill Brinkley (Dec 20)
- Re: SKYPE - What's the latest in terms of Risk... Charlie Prothero (Dec 20)
- Re: SKYPE - What's the latest in terms of Risk... Chris Edwards (Dec 21)
- Re: SKYPE - What's the latest in terms of Risk... Vincent Stoffer (Dec 21)