[12852] in cryptography@c2.net mail archive
Re: Who's afraid of Mallory Wolf?
daemon@ATHENA.MIT.EDU (Jeroen van Gelderen)
Tue Mar 25 11:46:54 2003
X-Original-To: cryptography@wasabisystems.com
X-Original-To: cryptography@wasabisystems.com
Date: Tue, 25 Mar 2003 03:36:14 -0500
Cc: Ian Grigg <iang@systemics.com>, cryptography@wasabisystems.com
To: Ed Gerck <egerck@nma.com>
From: Jeroen van Gelderen <jeroen@vangelderen.org>
In-Reply-To: <3E800350.5908EAE8@nma.com>
On Tuesday, Mar 25, 2003, at 02:20 US/Eastern, Ed Gerck wrote:
>
>
> "Jeroen C. van Gelderen" wrote:
>
>> 1. Presently 1% of Internet traffic is protected by SSL against
>> MITM and eavesdropping.
>>
>> 2. 99% of Internet traffic is not protected at all.
>
> I'm sorry, but no. The bug in MSIE, that prevented the correct
> processing of cert path restraints and which led to easy MITM
> attacks, has been fixed for some time now. Consulting browser
> statistics sites will show that the MSIE update in question,
> fueled by the need for other security updates, is making
> good progress.
Heu? I am talking about HTTPS (1) vs HTTP (2). I don't see how the MSIE
bug has any effect on this.
--
Jeroen C. van Gelderen - jeroen@vangelderen.org
"Be precise in the use of words and expect precision from others"
-- Pierre Abelard
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@wasabisystems.com
