Home page logo

basics logo Security Basics mailing list archives

Re: filter ssl traffic
From: Byron Sonne <blsonne () rogers com>
Date: Thu, 27 Nov 2003 13:25:46 -0500

I think it's look like a some kind of man-in-the-middle attack.  You Must
Use Users PRIVATE keys to emplement this. It means you violate the ideology
in that kind of cryptography.

And if that machine got compromised, it could turn pretty ugly; everyone thinks they are secure but they are not. Better to have no security than fake security!

Although what if there was some way to create a set of keys, for a group of people, such that there was a secure master or 'skeleton' key that could open each of them? Maybe I'm just tired but that doesn't too absurd, does it?



  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]