| lists.openwall.net | lists / announce john-users owl-users popa3d-users / xvendor oss-security / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 | |
|
Open Source and information security mailing list archives
| ||
|
From: chris at sw.gotdns.org (Chris van der Pennen) Subject: VerySign Class 1 Authority - bogus SSL certificate? I've been getting SSL certificates from various websites recently that are apparently from a "VerySign Class 1 Authority" - note the 'y' in VerySign. The certificate expired 6 December 2002. The data in Issued To and Issued By are identical. This smells very much like an SSL hijack attempt - can anyone shed some light on the situation? Chris