lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Date: Mon, 24 Dec 2007 15:53:18 -0800 From: coderman <coderman@...il.com> To: full-disclosure <full-disclosure@...ts.grok.org.uk> Subject: Webwasher SSL scanner i am looking for details of the PKI for integration of webwasher ssl scanner into an organization. they do not appear forthcoming with details... does the organization's root CA certify the appliance as a CA (so it can sign the MitM certs?) does the organization's CA have to sign each MitM cert for each approved domain (so it cannot MitM new domains on demand?) does it use a web UI for PKI management (import/export of certs, requests, etc) details appreciated. a transparent SSL/TLS MitM device for an entire organization. i love this idea... _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists