[15546] in bugtraq
Re: Bypassing Warnings For Invalid SSL Certificates,
daemon@ATHENA.MIT.EDU (Frank Knobbe)
Thu Jun 29 02:32:26 2000
Mime-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Message-Id: <015F790A1F66D2118277006097D206832746DA@SERVER1>
Date: Wed, 28 Jun 2000 21:34:35 -0500
Reply-To: Frank Knobbe <FKnobbe@HOME.COM>
From: Frank Knobbe <FKnobbe@HOME.COM>
X-To: "NT BugTraq (E-mail)" <NTBUGTRAQ@LISTSERV.NTBUGTRAQ.COM>
To: BUGTRAQ@SECURITYFOCUS.COM
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
I wrote earlier:
> To verify:
>
> De-select above mentioned settings. Get the IP address of your
> favorite SSL protected site and enter it into your local HOST file
> with a mock domain name (for example test.com). Then open I.E. and
> go to https://test.com and the page will be displayed without any
> warning notifications. It displays the lock in the Status Bar as
> usual.
This is not true. To verify, SELECT the mentioned settings. I
apologize for the confusion.
Thank you, David, for bringing this to my attention.
Regards,
Frank
-----BEGIN PGP SIGNATURE-----
Version: PGP Personal Privacy 6.5.1
Comment: PGP or S/MIME (X.509) encrypted email preferred.
iQA/AwUBOVq1u0RKym0LjhFcEQJLOQCg9HMfE3x8pOP6Y3oqtHRBBz/JLmAAoK2j
gg20joNNbNbCfAy+r0JskkPN
=fII8
-----END PGP SIGNATURE-----
