Kitz Forum

Computer Software => Security => Topic started by: AdrianH on September 29, 2011, 04:26:43 PM

Title: Is SSL broken? – More about Security Advisory 2588513
Post by: AdrianH on September 29, 2011, 04:26:43 PM: http://blogs.technet.com/b/srd/archive/2011/09/26/is-ssl-broken-more-about-security-advisory-2588513.aspx

Quote
Today the MSRC released Microsoft Security Advisory 2588513 alerting customers to a new vulnerability reported in SSL 3.0 and TLS 1.0. Here we would like to give further information about the technique used to exploit this vulnerability

Is SSL broken?

Yes and no. Yes means that under certain circumstances, the attacker can decrypt the encrypted SSL traffic. No means that there are significant mitigating factors that would make the attacks difficult or impossible............. (more)

Directions and Fixits ( plus link to remove Fixits) to be found on this page.

SMF 2.0.19 | SMF © 2021, Simple Machines
Simple Audio Video Embedder | Terms and Policies