Peter Gutmann wrote:
Gervase Markham <[EMAIL PROTECTED]> writes:
SSL3 has a mechanism for detecting an attacker attempting to downgrade a
connection between two SSL3 endpoints to SSL2 in order to MITM it, if
that's what you mean.
However for TLS Microsoft got their implementation of this wrong (it's still
wrong in the latest versions of MSIE, last time I checked), so all other
implementations don't use it in order to work with MSIE/IIS:
Actually, quite a few server products DO properly implement version roll-back
detection. I think that's one reason why IE keeps TLS disabled by default.
Dunno why they don't just fix it.
--
Nelson B
_______________________________________________
Mozilla-security mailing list
[email protected]
http://mail.mozilla.org/listinfo/mozilla-security
