>> "Just like Kurt Seifert's paper describes
>> MITM attacks that depend on user stupidity
>> (ignoring warnings about CN not matching
>> or expired or unknown CA)."
Would anyone have a reference to this paper??
This is a point I have been trying to make to some "security" people where
I am currently contracting.
G.
--
================================================
Gil Peeters
BVBA CANCAS I.T.
Willemsstraat 2
3000 Leuven
Belgium
================================================
JAVA and Distributed Object Specialists
================================================
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]