[23727] in bugtraq
Re: AW: IE https certificate attack
daemon@ATHENA.MIT.EDU (Florian Weimer)
Mon Jan 7 04:14:37 2002
To: BUGTRAQ@securityfocus.com
From: Florian Weimer <Weimer@CERT.Uni-Stuttgart.DE>
Date: 06 Jan 2002 09:04:23 +0100
In-Reply-To: <5FA09C38463BEE4B855CCA87732E639C5BB003@s23072.dns1.enbw> (K.J.Mueller@EnBW.com's message of "Thu, 3 Jan 2002 15:04:17 +0100")
Message-ID: <87ell3c3co.fsf@CERT.Uni-Stuttgart.DE>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
K.J.Mueller@EnBW.com writes:
> could it be, that the text-browsers (lynx, links, w3m) don't even
> bother comparing the actual server name to the certificate's
> "issued for" entry?
Some of them don't even have a repository of Root CAs, I think.
> Neither did any of them complain when accessing a https web page
> with a self-made certificate.
So they can't check the validity of the certificate at all.
--
Florian Weimer Weimer@CERT.Uni-Stuttgart.DE
University of Stuttgart http://CERT.Uni-Stuttgart.DE/people/fw/
RUS-CERT +49-711-685-5973/fax +49-711-685-5898
