Like This Post, Get Updates By Email:

Enter your email address:

Delivered by : FeedBurner

internet

SSL Trick Allows Spoofing Domain Certificates

Submitted by admin on Thu, 07/30/2009 - 10:47

SSL HackingThis years BlackHat security conference revealed some serious security loophole in way SSL certificates can be made to spoof domain identity, the trick allows phishers to spoof and display certificate of their choice on user browsers, this means that the attacker could make you land onto a phishing domain (say www.paypal.com.hisfakesite.com) and your browser will validate the SSL certificate for genuine domain (say www.paypal.com), the spoof works like this - the attacker applies for a SSL certificate with a null-character in the sub-domain for example : www.paypal.com[null character here].hisfakesite.com, the certificate authority ignores the sub-domain and contacts the domain owner to verify its legitimacy and issue the certificate, the problem arrives when clients like Firefox stop at the null character and wrongly displays the certificate valid for www.paypal.com on the phishing domain in this case.

»

3D Web Browsing is here...

Submitted by admin on Fri, 07/20/2007 - 10:26

SpaceTime the 3D web browser let's you surf the internet in 3D environment.

3D browsing

Search ebay auctions in 3D

ebay search in 3d
Image search in 3D

3D Image Search




Visit SpaceTime Homepage For Latest Version >>

>> Download Now

»
Syndicate content
This is just one of the many helpful tips we have posted, You can find more stories here,
Do subscribe to updates using your favorite RSS feed reader or using the secure FeedBurner email update form on top of this post.