Jean-Marc Desperrier wrote, On 2009-02-20 07:55: > Eddy Nigg wrote: >> On 02/19/2009 03:30 PM, Jean-Marc Desperrier: >>> Moxie Marlinspike in Black Hat has just demonstrated a very serious i18n >>> attack using a *.ijjk.cn certificate. >>> http://www.blackhat.com/presentations/bh-dc-09/Marlinspike/BlackHat-DC-09-Marlinspike-Defeating-SSL.pdf >>> >>> .cn is authorized for i18n, and the * will match anything, allowing all >>> the classic i18n based attacks. >> This was striking: >> >> Get a domain-validated SSL wildcard cert for *.ijjk.cn
Wildcards are not an essential part of this attack. They merely were a convenience for this demonstration, but the attack could have been done without using a wildcard cert. Even eliminating wildcard certs altogether would not stop this attack. > This being said : Is there already a bug open for this ? The only thing > that stops me opening it myself is that it might already exist but be > security restricted. Yes, there is, and yes, it is. _______________________________________________ dev-security mailing list dev-security@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security
