Re: [Full-disclosure] Creating a rogue CA certificate

I saw the actual talk about it, i advise everyone to take look at it before waiting for an "attack module" as you would still need, as they did, 200 PS3's.

Events.ccc.de tells you more and i Am astpnished by the fact that the so-called 'researchers' on this list don't actually research the subjects they post about.

Kudos again to the rogue CA team it must have been a burden.

Cheers,

Steve Clement -- Agglomera 12, rue Jean Engling Apartement 14A&B L-1644 Luxembourg Tel: +352 20 333 66 Fax: +352 20 333 66 9 http://www.agglomera.biz On Dec 30, 2008, at 23:42, n3td3v <xploitable@gmail.com> wrote:
> On Tue, Dec 30, 2008 at 10:29 PM, <Valdis.Kletnieks@vt.edu> wrote:
>> On Tue, 30 Dec 2008 20:10:16 GMT, n3td3v said:
>>> Aiding script kids to get credit card numbers out of folks e-
>>> commerce
>>> purchases.
>>
>> Dear Idiot:
>>
>> This is hardly an attack that the average script kiddie can pull off.
>>
>
> Until HD Moore releases an attack module for it.
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/

• This message: [ Message body ]
• Next message: Memisyazici, Aras: "[Full-disclosure] A tool to identify the MD5 certs on FF"
• Previous message: Jared DeMott: "Re: [Full-disclosure] Penetration testing will be dead by 2009 - Mr. Chess"
• Next in thread: Ureleet: "Re: [Full-disclosure] Creating a rogue CA certificate"
• Reply: Ureleet: "Re: [Full-disclosure] Creating a rogue CA certificate"

• Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ]