Log in or Sign up

Zero-day flaw found in web encryption

Discussion in 'other security issues & news' started by Thankful, Nov 5, 2009.

Thread Status:: Not open for further replies.

Thankful Savings Monitor

Joined:

Feb 28, 2005

Posts:

6,564

Location:

New York City

http://news.zdnet.co.uk/security/0,1000000189,39860592,00.htm

Thankful, Nov 5, 2009

#1
lotuseclat79 Registered Member

Joined:

Jun 16, 2005

Posts:

5,390

Additional information and a temporary OpenSSL patch:
HTTPS, SSL attack vector discovered; fix is on the way.

A serious security flaw in the TLS protocol could make HTTP communication vulnerable to a man-in-the-middle attack. Security researchers are working to address the issue.
Click to expand...

-- Tom

lotuseclat79, Nov 7, 2009

#2
scott1256ca Registered Member

Joined:

Aug 18, 2009

Posts:

144

Can any of the experts at this site comment as to how concerned we should be about this in the near term, i.e. next couple of months? Are evildoers likely to start exploiting this immediately or will it take them some time?

Thanks

scott1256ca, Nov 14, 2009

#3

Thread Status:: Not open for further replies.

This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
By continuing to use this site, you are consenting to our use of cookies.

Accept Learn More...