skip to main | skip to sidebar

Giles Bowkett

the crack of doom on the hydrogen jukebox

Friday, January 2, 2009

Rogue CA Certs Permit Impersonating Any Site

This successful proof of concept shows that the certificate validation performed by browsers can be subverted and malicious attackers might be able to monitor or tamper with data sent to secure websites. Banking and e-commerce sites are particularly at risk because of the high value of the information secured with HTTPS on those sites. With a rogue CA certificate, attackers would be able to execute practically undetectable phishing attacks against such sites.
Posted by Giles Bowkett at 2:13 AM
Newer Post Older Post Home

Carbon Ads

singrobots.com

Are you a hacker who likes to make music? You know how you feel precise control when you write code you understand, but you have to filter your understanding of your music through oversimplified GUIs which sometimes have terrible UX? I made a series of videos which teaches you how to write music sequencing software in Node.js and CoffeeScript. When I do it, I experience a clarity which makes it easy for me to make more exciting sounds. You may have the same experience. Upcoming episodes will also teach you how to use simple probabilistic artificial intelligence to write code which writes its own music (which I've already done in Ruby).

faq | review

Trinkets For Your Amusement

Hacker Newspaper
minim.al bit.ly
Clueful Google
BTC in USD

Stuff I Drew




The Ruby On Rails Tutorial

Check out the best way to learn Rails

ZERG KILLA

Disclaimer

Some links on this blog are affiliate links, which pay sales commissions.

Conferences


Bay Area Computer Music Technology Group





Save The Mara Wildlife Conservatory

Blog Archive

  • ►  2013 (49)
    • ►  May (2)
    • ►  April (10)
    • ►  March (16)
    • ►  February (6)
    • ►  January (15)
  • ►  2012 (181)
    • ►  December (8)
    • ►  November (13)
    • ►  October (22)
    • ►  September (27)
    • ►  August (15)
    • ►  July (10)
    • ►  June (9)
    • ►  May (18)
    • ►  April (17)
    • ►  March (6)
    • ►  February (18)
    • ►  January (18)
  • ►  2011 (198)
    • ►  December (12)
    • ►  November (22)
    • ►  October (8)
    • ►  September (4)
    • ►  August (16)
    • ►  July (20)
    • ►  June (22)
    • ►  May (14)
    • ►  April (21)
    • ►  March (14)
    • ►  February (9)
    • ►  January (36)
  • ►  2010 (337)
    • ►  December (22)
    • ►  November (17)
    • ►  October (25)
    • ►  September (29)
    • ►  August (29)
    • ►  July (30)
    • ►  June (32)
    • ►  May (33)
    • ►  April (36)
    • ►  March (20)
    • ►  February (32)
    • ►  January (32)
  • ▼  2009 (314)
    • ►  December (21)
    • ►  November (18)
    • ►  October (9)
    • ►  September (15)
    • ►  August (10)
    • ►  July (10)
    • ►  June (35)
    • ►  May (40)
    • ►  April (34)
    • ►  March (37)
    • ►  February (35)
    • ▼  January (50)
      • The Argument Against Legalizing Prostitution: Pres...
      • Music: Myagi Remix Competition (Help Me Out!)
      • Xone Mixed In Key: Harmonic Analysis DJ Software
      • Miniapp: Sssstolen!
      • Rails Podcast Interview
      • ENTP: Tender Knows What You Mean
      • Arrington: You Should Have Seen That Coming
      • Rails App Converts Text To Music
      • noise.io
      • Everybody Is Wrong About Something
      • Why Your Startup Will Fail
      • Speaking At CUSEC In MontrĂ©al
      • ftw
      • The Business Case For Expensive iPhone Apps
      • HAML Brings Seaside Awesome To Ruby
      • Cute Video Summarizes Cluetrain Manifesto
      • User Interface: Remember The Ecosystem
      • Animation: Hand-Drawn Hand
      • OS X: Get Rid Of Weak Icons
      • Nyeah Nyeah Atwood: I Win
      • What's Hot On GitHub: ENTP
      • Coding Apps For National Service On Jan. 19th
      • Return Of The Tumble-Log
      • Why Hacker News Thinks PHP Won Something
      • Made-Up Thomas Edison Quote
      • Ableton Live Will Host Max/MSP
      • MIT Blackjack Team Perspective On Financial Crisis...
      • Why Twitter Should Buy Hashtags
      • Browser Wars Redux
      • Never Build A Concept Car
      • Libertarianism Attempts To Divide By Zero
      • MS Paint Dead Space
      • My Balls Are Fuzzy Today
      • The Fundamental Problem With Libertarianism
      • Propane: Custom CSS Feature/Hack
      • Truth In Advertizing
      • Here Comes Everybody: Law Enforcement
      • Mystery Of The Demon RSpec
      • Public Enemy's Hank Shocklee: Production Tips
      • Podcast: New Beats Every Day
      • iPhone Finally Fulfilling Newton's Promise
      • Truth
      • Libertarian? I Can Fix That
      • Classic Song Travels Through Time, Perpetually Reb...
      • Protect Your Productivity: Block Incompetent Usabi...
      • The Street Finds Its Own Uses For Things
      • Rogue CA Certs Permit Impersonating Any Site
      • Internet Marketing On Twitter: Fail And Win
      • How To Give A Great Presentation
      • Try New Tentacle Grape Soda!
  • ►  2008 (494)
    • ►  December (31)
    • ►  November (33)
    • ►  October (64)
    • ►  September (47)
    • ►  August (30)
    • ►  July (32)
    • ►  June (42)
    • ►  May (44)
    • ►  April (31)
    • ►  March (45)
    • ►  February (47)
    • ►  January (48)
  • ►  2007 (577)
    • ►  December (53)
    • ►  November (65)
    • ►  October (67)
    • ►  September (22)
    • ►  August (24)
    • ►  July (34)
    • ►  June (42)
    • ►  May (82)
    • ►  April (53)
    • ►  March (23)
    • ►  February (60)
    • ►  January (52)
  • ►  2006 (29)
    • ►  December (25)
    • ►  November (4)