Full Disclosure: Re: blocking Google Desktop

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Full Disclosure mailing list archives

Re: blocking Google Desktop

From: Michael Holstein <michael.holstein () csuohio edu>
Date: Fri, 10 Feb 2006 16:47:07 -0500

Looks like a great target for Pharming attacks. Thanks for all your data
sent to me over an SSL connection. =)

Yeah .. Google is notorious for trying to send everything into the samedomain -- trying to make our lives difficult.

Right now, I'm trying snort with REACT actions based on their SSLcertificate fingerprint. Preventing the key exchange would prevent thesession setup.


I just need to see if that'd block Gmail as well.

~Mike.
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

By Date By Thread

Current thread:

Re: blocking Google Desktop, (continued)
- Re: blocking Google Desktop Mike Owen (Feb 10)
- RE: blocking Google Desktop J. Patterson Wicks (Feb 10)
- RE: blocking Google Desktop Sims, Brian (MED US) (Feb 10)
- RE: blocking Google Desktop Todd Towles (Feb 10)
  - Re: blocking Google Desktop Michael Holstein (Feb 10)
    - Re: blocking Google Desktop Jason Mayer (Feb 10)