Firewall Wizards mailing list archives
Re: Firewall best practices
From: "Bruce B. Platt" <bruce () ei3 com>
Date: Wed, 28 Apr 2010 14:17:54 -0400
lordchariot said in part:
... but can you imagine if a nefarious CA got embedded into the browser? Meh, it actually probably wouldn't make much difference anyway. Users are just going to click OK anyway to bypass the warning...sigh.
... Capture some packets when using IE when it finds a web site using a certificate whose entire certification path is not included in the local machine account's "Trusted Root Certification Authorities". What happens is both enlightening and frightening when this occurs with the wrong certificate. I chose not to elaborate on the consequences. I share erik's "sigh". -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. _______________________________________________ firewall-wizards mailing list firewall-wizards () listserv icsalabs com https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards
Current thread:
- Re: Firewall best practices, (continued)
- Re: Firewall best practices Paul D. Robertson (Apr 27)
- Re: Firewall best practices ArkanoiD (Apr 30)
- Re: Firewall best practices Andre Lima (Apr 30)
- Re: Firewall best practices Dave Piscitello (Apr 28)
- Re: Firewall best practices ArkanoiD (Apr 28)
- Re: Firewall best practices Nate Itkin (Apr 27)
- Re: Firewall best practices Dave Piscitello (Apr 27)
- Re: Firewall best practices Carson Gaspar (Apr 27)
- Re: Firewall best practices Fetch, Brandon (Apr 27)
- Re: Firewall best practices lordchariot (Apr 28)
- Re: Firewall best practices Bruce B. Platt (Apr 30)
- Re: Firewall best practices Cian Brennan (Apr 28)
- Re: Firewall best practices Fetch, Brandon (Apr 28)
- Re: Firewall best practices Mathew Want (Apr 30)
- Re: Firewall best practices ArkanoiD (Apr 30)
- Re: Firewall best practices Marcus J. Ranum (Apr 30)
- Re: Firewall best practices ArkanoiD (Apr 27)
- Re: Firewall best practices Dave Piscitello (Apr 22)
- Re: Firewall best practices Marcus J. Ranum (Apr 15)