Penetration Testing mailing list archives
Re: How to check for SSL1 ?
From: Michael Sierchio <kudzu () tenebras com>
Date: Thu, 29 Sep 2005 20:25:55 -0700
Thomas Springer wrote:
- ssl v1 (ancient, considered vulnerable to mitm-attacks)- ssl v2 (old, considered vulnerable to mitm-attacks, but still supported by some servers)- ssl v3 (considered secure, but seldom used) - tls 1.0 (typically preferred these days)
I have no idea where you come by your ideas, but SSLv3 is much more widely deployed on servers than TLSv1.0. ------------------------------------------------------------------------------Audit your website security with Acunetix Web Vulnerability Scanner: Hackers are concentrating their efforts on attacking applications on your website. Up to 75% of cyber attacks are launched on shopping carts, forms, login pages, dynamic content etc. Firewalls, SSL and locked-down servers are futile against web application hacking. Check your website for vulnerabilities to SQL injection, Cross site scripting and other web attacks before hackers do! Download Trial at:
http://www.securityfocus.com/sponsor/pen-test_050831 -------------------------------------------------------------------------------
Current thread:
- How to check for SSL1 ? Thomas Springer (Sep 28)
- Re: How to check for SSL1 ? Sahir Hidayatullah (Sep 29)
- Re: How to check for SSL1 ? Thomas Springer (Sep 29)
- Re: How to check for SSL1 ? Michael Sierchio (Sep 29)
- Re: How to check for SSL1 ? Thomas Springer (Sep 29)
- Re: How to check for SSL1 ? Sahir Hidayatullah (Sep 29)