All Things Microsoft > Microsoft as a Company
USE IE...SSL is INSECURE....OOPS
dbl221:
Oh man! I seem to recall in Interrnet Security class
THAT THIS WAS ONE OF FIRST RULES OF ANY SECURE CONNECTION.
Authentication and Autorization are beaten into your head every
day in Computer-Systems Hell...er I mean school.
I wish I could get a job where I could get paid to be
as stupid as the FuckTards at Micro$hit.
eXor:
What about Opera 6.01 on Windows?
Is it affected by this?
voidmain:
Yep, Oprah is also vulnerable:
http://www.opera.com/pressreleases/en/2002/08/20020813.html
beltorak0:
i was wondering whewn this would appear in the forums;
incedentally, mozilla (addmittedly pre-1.0) appeared too buggy to support the bug. lol.
<--- snip http://theregister.co.uk/content/4/26620.html snip ---->
Konqueror turned out quite vulnerable, as I mentioned above. Mozilla was not vulnerable, but I'm not sure if that's because it handled the situation properly, or is, ironically, somehow too buggy to be exploited.
<--- snip --->
With Mozilla the URL, https://www.amazon.com simply went nowhere. No cert warning, no 404, nothing. The browser simply remained on the page from which I started. The behavior was the same when I typed the URL into the address bar.
I honestly don't know if that qualifies as success or a felicitous failure; but either way Mozilla users can continue to use SSL in the mean time, while Microsoft and VeriSign are bickering and blaming each other for the problem.
<--- snip snip ---->
that was yesterday.
-t.
sporkme:
quote:incedentally, mozilla (addmittedly pre-1.0) appeared too buggy to support the bug. lol.
--- End quote ---
well put
SHOCK AND DISBELIEF! ie is insecure? why, what if they have my credit card number?!?!?! oh wait.. that isnt a problem for me...
ya this REALLY makes palladium look like the way to go, because SURELY history does not repeat itself in microsoft's FINE line of products... errrrrrrr....
Navigation
[0] Message Index
[#] Next page
[*] Previous page
Go to full version