Account name:
Password
(OpenID?)
(Forgot it?)
Remember Me
You're viewing
stas
's journal
Create a Dreamwidth Account
Learn More
Interest
Region
Site and Account
FAQ
Email
Reload page in style:
site
light
Frodo
Peddling unsubstantiated hope
February
2026
S
M
T
W
T
F
S
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
Navigation
Recent Entries
Archive
Reading
Tags
Memories
Profile
Page Summary
yankel.livejournal.com
-
(no subject)
wvlad.livejournal.com
-
(no subject)
aslanbeily.livejournal.com
-
(no subject)
aslanbeily.livejournal.com
-
(no subject)
yankel.livejournal.com
-
(no subject)
stas
-
(no subject)
Style Credit
Style:
Blue
for
Drifting
by
Jennie Griner
Resources:
OSWD design
Expand Cut Tags
No cut tags
rogue CA certificate
stas
Sunday,
January
4th
,
2009
09:29 pm
Для тех, кто понимает:
Успешная попытка взлома системы сертификатов HTTPS
. Через коллизию в MD5 и службу Verisign.
Tags:
окружающая среда
,
профессия
Previous Entry
Add Memory
Share This Entry
Next Entry
6 comments
Reply
Threaded
|
Top-Level Comments Only
no subject
yankel.livejournal.com
Monday, January 5th, 2009 09:12 am (UTC)
ответ нашего спеца :)
BTW, note that they spent a lot of time and money and a whole lab full of PS3 boxes, all to create one fake certificate.
It is easier and cheaper to bribe someone at RapidSSL to give you a certificate…
Link
Reply
no subject
wvlad.livejournal.com
Monday, January 5th, 2009 09:17 am (UTC)
Дык, не зря озабоченные безопасностью требуют SHA вместо MD5.
Link
Reply
no subject
aslanbeily.livejournal.com
Monday, January 5th, 2009 11:49 am (UTC)
ну ёоооо
пропал калабуховский дом
Link
Reply
no subject
aslanbeily.livejournal.com
Monday, January 5th, 2009 11:50 am (UTC)
знаешь, в первый раз на монблан тоже десять лет готовились и год поднимались
а теперь туда нубы два раза в день для разминки ходят :(
Link
Reply
Thread from start
Parent
no subject
yankel.livejournal.com
Monday, January 5th, 2009 11:51 am (UTC)
Тоже верно :)
Link
Reply
Thread from start
Parent
no subject
stas
Monday, January 5th, 2009 05:14 pm (UTC)
Одного вполне достаточно - он позволяет подписывать другие. А лабы много у кого сейчас есть, не считая ботнетов.
Link
Reply
Thread from start
Parent
Previous Entry
Add Memory
Share This Entry
Next Entry
6 comments
Reply
Threaded
|
Top-Level Comments Only
![[personal profile]](https://www.dreamwidth.org/img/silk/identity/user.png){kind=small}
![[identity profile]](https://www.dreamwidth.org/img/silk/identity/openid.png){kind=small}
no subject
BTW, note that they spent a lot of time and money and a whole lab full of PS3 boxes, all to create one fake certificate.
It is easier and cheaper to bribe someone at RapidSSL to give you a certificate…
no subject
no subject
пропал калабуховский дом
no subject
а теперь туда нубы два раза в день для разминки ходят :(
no subject
no subject