[15825] in cryptography@c2.net mail archive
Re: E-commerce attack imminent; Sudden increase in port
daemon@ATHENA.MIT.EDU (Anne & Lynn Wheeler)
Fri Jul 23 15:19:18 2004
X-Original-To: cryptography@metzdowd.com
X-Original-To: cryptography@metzdowd.com
Date: Fri, 23 Jul 2004 12:08:29 -0600
To: Matt Crawford <crawdad@fnal.gov>
From: Anne & Lynn Wheeler <lynn@garlic.com>
Cc: Anne & Lynn Wheeler <lynn@garlic.com>, cryptography@metzdowd.com
In-Reply-To: <0F970F4F-DCCB-11D8-87D6-000A95A0BF96@fnal.gov>
At 11:09 AM 7/23/2004, Matt Crawford wrote:
>I can't see any reasonable way to derive your conclusion from the cited
>article.
>
> "The surge began on 15 July, the day before the public disclosure
> of a critical flaw in a server module called mod_ssl.
>
> "The last time Netcraft observed similar activity was in April,
> shortly before a wave of attacks on SSL servers that included the
> compromise of some major e-commerce sites. Attackers used a flaw
> in Microsoft's implementation of SSL to install malicious code..."
i just mentioned that it could possible be (another kind of)
attack/threat model (other than the obvious referenced
in the article).
i wasn't aware that this mailing list would preclude mention
of other possible attack/thread models .... other than the
obvious ones mentioned.
--
Anne & Lynn Wheeler http://www.garlic.com/~lynn/
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
