Full Disclosure mailing list archives
Re: SSL Filtering
From: Blue Boar <BlueBoar () thievco com>
Date: Fri, 17 Oct 2003 11:57:21 -0700
Is there a way to detect if this MITM is being performed?
The one method I'm familiar with for how to accomplish this with SSL involves installing keys for a company CA in the users' browsers. (The SSL MITM box resigns the keys, and as long as the key is trusted by the user, no dire error messages occur.) If you were paying attention, you could check that the signing CA had changed.
BB
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- SSL Filtering Jason Sloderbeck (Oct 16)
- Re: SSL Filtering - OFFTOPIC Kurt Seifried (Oct 16)
- Re: SSL Filtering Shawn McMahon (Oct 17)
- <Possible follow-ups>
- Re: SSL Filtering John Sec (Oct 17)
- Re: SSL Filtering Blue Boar (Oct 17)
- Re: SSL Filtering Brian Hatch (Oct 17)
- Re: SSL Filtering Blue Boar (Oct 17)