[14719] in cryptography@c2.net mail archive
RE: SSL, client certs, and MITM (was WYTM?)
daemon@ATHENA.MIT.EDU (Anne & Lynn Wheeler)
Wed Nov 12 16:26:52 2003
X-Original-To: cryptography@metzdowd.com
X-Original-To: cryptography@metzdowd.com
Date: Thu, 23 Oct 2003 09:43:04 -0600
To: <tom.otvos@rogers.com>
From: Anne & Lynn Wheeler <lynn@garlic.com>
Cc: <iang@systemics.com>, <cryptography@metzdowd.com>
In-Reply-To: <4.2.2.20031022180915.00adaf00@mail.earthlink.net>
Internet groups starts anit-hacker initiative
http://www.computerweekly.com/articles/article.asp?liArticleID=125823&liArti
cleTypeID=1&liCategoryID=2&liChannelID=22&liFlavourID=1&sSearch=&nPage=1
one of the threats discussed in the above is the domain name ip-address
take-over mentioned previously
http://www.garlic.com/~lynn/aadsm15.htm#28
which was one of the primary justifications supposedly for SSL deployment
(am i really talking to the server that I think i'm talking to).
--
Anne & Lynn Wheeler http://www.garlic.com/~lynn/
Internet trivia 20th anv http://www.garlic.com/~lynn/rfcietff.htm
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
