On Friday, January 12, 2018 at 8:33:42 AM UTC-7, Hanno Böck wrote:
> Hi,
>
> Comodo ITSM (IT Service Management Software) runs an HTTPS server on
> localhost and port 21185. The domain localhost.cmdm.comodo.net pointed
> to localhost.
>
> It is obvious that with this setup the private key is part
Hanno, thanks for reporting this to us earlier today.
Mozilla, please consider adding https://crt.sh/?id=245397620 to OneCRL.
Thanks.
On 12/01/18 15:33, Hanno Böck via dev-security-policy wrote:
Hi,
Comodo ITSM (IT Service Management Software) runs an HTTPS server on
localhost and port 21185
Hi,
Comodo ITSM (IT Service Management Software) runs an HTTPS server on
localhost and port 21185. The domain localhost.cmdm.comodo.net pointed
to localhost.
It is obvious that with this setup the private key is part of the
application and thus compromised. With advanced next generation key
extra
3 matches
Mail list logo