funsec mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Buying SSL certificate for Mozilla.com

From: Reed Loden <reed () reedloden com>
Date: Fri, 26 Dec 2008 18:52:56 -0600
On Fri, 26 Dec 2008 23:59:55 +0200 (EET)
Juha-Matti Laurio <juha-matti.laurio () netti fi> wrote:


http://www.sslshopper.com/article-ssl-certificate-for-mozilla.com-issued-without-validation.html


Just ignore the fact that the SSL certificate was for www.mozilla.com.
It could have been for any website (even verisign.com), and CertStar
would most likely have granted it.

~reed

-- 
Reed Loden <reed () reedloden com>
_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.
Previous By Date Next
Previous By Thread Next

Current thread: