oss-sec mailing list archives

Re: attacking hsts through ntp

From: Michael Samuel <mik () miknet net>
Date: Fri, 17 Oct 2014 11:32:01 +1100

On 16 October 2014 23:03, Hanno Böck <hanno () hboeck de> wrote:

Same should work for HPKP. The idea of setting some security feature
through a header needs a revisit.
The solution would be to have a more reliable PC time. How do we do
that?


A Date: header?

Current thread:

attacking hsts through ntp Hanno Böck (Oct 16)
- Re: attacking hsts through ntp Kurt Seifried (Oct 16)
  - Re: attacking hsts through ntp Lukas Reschke (Oct 16)
  - Re: attacking hsts through ntp Hanno Böck (Oct 16)
    - Re: attacking hsts through ntp Kurt Seifried (Oct 16)
    - Re: attacking hsts through ntp Hanno Böck (Oct 16)
    - Re: attacking hsts through ntp Kurt Seifried (Oct 16)
    - Re: attacking hsts through ntp Michal Zalewski (Oct 16)
    - Re: attacking hsts through ntp Hanno Böck (Oct 16)
    - Re: attacking hsts through ntp Adam Langley (Oct 16)
- Re: attacking hsts through ntp Michael Samuel (Oct 16)
  - Re: attacking hsts through ntp Kurt Seifried (Oct 16)
    - Re: attacking hsts through ntp Hanno Böck (Oct 17)
    - Re: attacking hsts through ntp Yves-Alexis Perez (Oct 17)
    - Re: attacking hsts through ntp Stephen Röttger (Oct 17)
    - Re: attacking hsts through ntp Yves-Alexis Perez (Oct 18)
    - Re: attacking hsts through ntp Stephen Röttger (Oct 20)
    - RE: attacking hsts through ntp Bendler, Ehren (Oct 20)
    - Re: attacking hsts through ntp Tim (Oct 17)
    - Re: attacking hsts through ntp Phil Pennock (Oct 17)
    - Re: attacking hsts through ntp Tim (Oct 17)

(Thread continues...)