It's looks very serious but it doesn't seem like it's quite that serious (yet):
“BEAST is like a cryptographic Trojan horse – an attacker slips a bit of JavaScript into your browser, and the JavaScript collaborates with a network sniffer to undermine your HTTPS connection.” It sounds like you would have to be on a compromised network (if you bank on anything public you're asking for it) and/or would require a XSS attack. It will be interesting to see how this vulnerability is resolved and how fast. -- Central West End Linux Users Group (via Google Groups) Main page: http://www.cwelug.org To post: [email protected] To subscribe: [email protected] To unsubscribe: [email protected] More options: http://groups.google.com/group/cwelug
