Kevin Gilchrist wrote: > It's the first good demonstration of the new SSL flaw. > It is tricky enough to pull off because you need a host somewhere close > to the web servers to sniff and redirect other SSL sessions.
No need for that. Taking over a nameserver or even leaving behind a compromised hosts file on a publicly accessible machines will do :) Jochem ______________________________________________________________________ This list and all House of Fusion resources hosted by CFHosting.com. The place for dependable ColdFusion Hosting. Archives: http://www.mail-archive.com/[email protected]/ Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists
