mailing list archives
Re: SSL protocol flaw, request for opinions
From: Gayle Shipp <gayle () shipps us>
Date: Sat, 22 Feb 2003 17:20:06 -0800
The best, albeit brief, explanation I've seen is this one.
http://www.bizreport.com/article.php?art_id=4182 It has had some
interesting quotes by Bruce Schneier, computer security expert and author.
I suspect he'll also address it next month in his monthly Crypto-gram
(which is a great newsletter if you don't subscribe --
At 09:46 PM 2/20/2003 -1000, Juan Velasquez wrote:
I just read this story which explains how the Swiss Federal Institute of
exploited a flaw in the SSL protocol to hijack an 8 character password
from a bunch of SSL encrypted email logins.
I was surprised. What does the security community think of this?
Juan () EvolutionhH com