You fellas probably should know that ssl has been largely broken for some months. Mainly by this guy named moxie marlinspike. Here where he talks about how it's done.
Mostly renders ssl useless, so don't trust your certificates authority. Don't do on-line banking and don't send sensitive information over the wires like credit-card numbers. ssl is now broken and this is an interesting panel you should listen to it.
October 3, 2010
For those less computer knowledgeable....
HTTPS:Hyper Text Transfer Protocol Secure
This is supposed to add a layer of security for doing things like online purchases and such.
What the OP means is that as far as security is concerned, it is a big failure.
Hackers have gotten into HTTPS and SSL so they are no longer secure.
December 20, 2010
this is what i do for a living (A+, N+, cisco, MSCP) and i hate to tell you...
There is a fundamental flaw in internet architecture that make any site vulnerable to a man in the middle attack no matter how well encrypted or secured or tied up with a pretty bow 🙂 this includes ARPANET, MILnet, and just about any WAN. if you want secure return to Minitel or a BBS system.
this 'flaw' will continue to be a problem until the router hash table system is dumped for something slower but more secure...personally I think the NSA and NRO put it there on purpose, but that's just speculation on my part.
But the truth is that none of us are likely targets for stealing our account info. We just don't matter that much.
December 4, 2009
Its a good thing that when I do online purchasing I never
use a major credit card. I add funds
to a debit for the exact amount of the transfer.
“Living backwards!” Alice repeated in great
astonishment. “I never heard of such a thing!”
“—but there’s one great advantage in it, that one’s
memory works both ways.”
— Lewis Carroll, Through the Looking-Glass
July 28, 2010
Registering "*<null>mydomain.com" creates a certificate that is a valid substitute for every site on the net? Cooooooool! Money, money, money, money.
"I wish I had some loftier goal, but in the end it's the money." -Speed
"It's not about the money. It's about the money." -my doctor
I'm watching The Italian Job. That was about the money. Next up, Oceans 11, Entrapment and Die Hard.