lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Message-ID: <412595167.20060522030021@Zoller.lu> Date: Mon May 22 02:00:32 2006 From: Thierry at Zoller.lu (Thierry Zoller) Subject: Five Ways to Screw Up SSL Dear Dude VanWinkle, DV> Why would it matter who signed it? As long as the data is encrypted as DV> it travels over the internet, I am happy. Why would it matter who signed it? I am happy to handle the ssl handshake mitm for you. All your encrypted data is belong to me. -- http://secdev.zoller.lu Thierry Zoller Fingerprint : 5D84 BFDC CD36 A951 2C45 2E57 28B3 75DD 0AC6 F1C7