[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Message-ID: <4ef5fec60712241553j5ecbf3a2n1ae0f33096a58712@mail.gmail.com>
Date: Mon, 24 Dec 2007 15:53:18 -0800
From: coderman <coderman@...il.com>
To: full-disclosure <full-disclosure@...ts.grok.org.uk>
Subject: Webwasher SSL scanner
i am looking for details of the PKI for integration of webwasher ssl
scanner into an organization. they do not appear forthcoming with
details...
does the organization's root CA certify the appliance as a CA (so it
can sign the MitM certs?)
does the organization's CA have to sign each MitM cert for each
approved domain (so it cannot MitM new domains on demand?)
does it use a web UI for PKI management (import/export of certs, requests, etc)
details appreciated. a transparent SSL/TLS MitM device for an entire
organization. i love this idea...
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists