Submission + - Disclosure: No-check SSL Certificates... (startcom.org) 4
StartCom writes: "In a previous article I reported about Man-In-The-Middle (MITM) attacks and if they really happen. Unfortunately it does happen as some testimonials confirm. Now it's even easier because in the attack described previously, untrusted certificates from an unknown issuer were used. Want to make the attack perfect with no error and fully trusted certificate? No problem, just head over to one of Comodo's resellers.
And here the disclosure: In order to confirm for yourself, edit the hosts file at your computer and add the following entry:
And here the disclosure: In order to confirm for yourself, edit the hosts file at your computer and add the following entry:
- 192.116.242.23 www.mozilla.com
- 192.116.242.23 mozilla.com
Navigate with your browser to https://www.mozilla.com/ and enjoy Mozilla's new home page.
Otherwise read the article which includes screen shots.
