Newer posts are loading.
You are at the newest post.
Click here to check if anything new just came in.

September 07 2011


Fefe's blog - 2011-09-07 - Zertifikate - CAs - GlobalSign

[l] Die SSL-CA-Apokalypse geht weiter. Der angebliche Diginotar-Hacker hat herumgeposed, er habe ja noch vier andere CAs unter Kontrolle, und benennt explizit GlobalSign.

Und heute: GlobalSign zieht die Notbremse, stellt Zertifikatsverkauf ein, startet Monster-Audit.

Wir sind jetzt also soweit, dass man mit Pastebin CAs runterfahren kann :-)

September 05 2011


I know users of CyanogenMod in Iran who are directly impacted by this compromise of DigiNotar. Additionally, they use the GSM network and it is possible to set the clocks of GSM phones - so certificates that have been issued are not valid only during some window of time - the attackers literally control time. The attackers here have all of the cards and only by removing the trust in DigiNotar *at the root* will help those users to stay secure

[End of the full text version]
DigiNotar fully compromised - CyanogenMod Android ROM - Google Project Hosting | Issue 4266 - cyanogenmod - 2011-09-03
Reposted byiranelection iranelection
Older posts are this way If this message doesn't go away, click anywhere on the page to continue loading posts.
Could not load more posts
Maybe Soup is currently being updated? I'll try again automatically in a few seconds...
Just a second, loading more posts...
You've reached the end.

Don't be the product, buy the product!