[SSL Observatory] https://controller.mobile.lan
Ralph Holz
holz at net.in.tum.de
Mon Feb 6 13:22:59 PST 2012
Hi,
> I'm at a hotel in Munich and I found a rather funny cert performing a
> full MITM for *:443 - https://controller.mobile.lan is signed by VeriSign.
Can you please confirm that this is not just the capture portal of Hotel
König Ludwig? I wouldn't be surprised. That subject line points to it,
too: Securepoint Gmbh, a company in the German state of Niedersachsen:
https://www.securepoint.de/
Or is this really the cert you get *after* you've gotten past the
authentication step in the portal and should have unintercepted
connectivity? That would be grave.
Ralph
--
Dipl.-Inform. Ralph Holz
I8: Network Architectures and Services
Technische Universität München
http://www.net.in.tum.de/de/mitarbeiter/holz/
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 490 bytes
Desc: OpenPGP digital signature
URL: <http://lists.eff.org/pipermail/observatory/attachments/20120206/bfdd8a33/attachment.sig>
More information about the Observatory
mailing list