[SSL Observatory] MS advisory out on the other certificates
Steve Schultze
sjs at princeton.edu
Wed Mar 23 12:39:39 PDT 2011
FWIW, my commentary. Sorry if this is getting too off-topic.
http://freedom-to-tinker.com/blog/sjs/web-browsers-and-comodo-announce-successful-certificate-authority-attack-perhaps-iran
On Mar 23, 2011, at 3:18 PM, Robert Malmgren wrote:
> After Jacobs first sign of warnings, and the bad addons.mozilla.org, now there is a more complete list of frauded certs.
>
> These certificates affect the following Web properties:
> •
> login.live.com
>
> •
> mail.google.com
>
> •
> www.google.com
>
> •
> login.yahoo.com (3 certificates)
>
> •
> login.skype.com
>
> •
> addons.mozilla.org
>
> •
> "Global Trustee"
>
>
> This seem to be a very bad situation, afaik.
>
> For more info, see
> https://www.microsoft.com/technet/security/advisory/2524375.mspx
>
> --r
> ---
> Robert Malmgren Encrypted e-mail preferred
> E-mail: rom at romab.com PGP RSA 4096, id: 0x5B979EF5
> Cellular: +46(0)708-330378 Fingerprint: DE59 D86C 4CAF 2E59 A64E
> Jabber: rom at romab.com 5476 2360 F1B4 5B97 9EF5
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.eff.org/pipermail/observatory/attachments/20110323/e234bd7a/attachment.html>
More information about the Observatory
mailing list