[56814] in North American Network Operators' Group


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: OpenSSL

daemon@ATHENA.MIT.EDU (Stewart, William C (Bill), SALES)
Mon Mar 17 15:52:49 2003

Date: Mon, 17 Mar 2003 14:52:10 -0600
From: "Stewart, William C (Bill), SALES" <billstewart@att.com>
To: <nanog@trapdoor.merit.edu>
Errors-To: owner-nanog-outgoing@merit.edu

Steve Bellovin wrote:
> The only caveat is that their attack currently works on LANs, not =
WANs,=20
> because they need more precise timing than is generally feasible over =
the Internet.

On the other hand, many of the SSL servers on the web
are located in hosting centers, which are LAN-connected to potential =
attackers
who can get accounts on machines in the same hosting centers.
The attackers' and targets' servers tend to have routers in front of =
them,
as well as the switches provided by the hosting center,
but it's still much more precise than the open net.


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[56814] in North American Network Operators' Group

Re: OpenSSL

daemon@ATHENA.MIT.EDU (Stewart, William C (Bill), SALES)Mon Mar 17 15:52:49 2003

daemon@ATHENA.MIT.EDU (Stewart, William C (Bill), SALES)
Mon Mar 17 15:52:49 2003