Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

fulldisclosure logo Full Disclosure mailing list archives

Webwasher SSL scanner
From: coderman <coderman () gmail com>
Date: Mon, 24 Dec 2007 15:53:18 -0800
i am looking for details of the PKI for integration of webwasher ssl
scanner into an organization.  they do not appear forthcoming with
details...

does the organization's root CA certify the appliance as a CA (so it
can sign the MitM certs?)

does the organization's CA have to sign each MitM cert for each
approved domain (so it cannot MitM new domains on demand?)

does it use a web UI for PKI management (import/export of certs, requests, etc)

details appreciated.  a transparent SSL/TLS MitM device for an entire
organization.  i love this idea...

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]