funsec mailing list archives

Previous By Date Next
Previous By Thread Next

Re: [cisspforum] SSL/TLS broken?

From: "Larry Seltzer" <larry () larryseltzer com>
Date: Tue, 10 Nov 2009 07:24:28 -0500
Ummmm, are we missing something? As far as I can see, this affects

*any* kind of e-commerce, but I'm not seeing much discussion on it ...

The question as I see it is what can you really do with this attack?
It's a difficult one to execute because you need to be an MITM and even
then there are limits to what you can accomplish.

Larry Seltzer
Contributing Editor, PC Magazine
larry_seltzer () ziffdavis com 
http://blogs.pcmag.com/securitywatch/


_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.
Previous By Date Next
Previous By Thread Next

Current thread: