Re: where is netscape 4 in testing?

To: debian-user@lists.debian.org
Subject: Re: where is netscape 4 in testing?
From: Kirk Strauser <kirk@strauser.com>
Date: Tue, 09 Sep 2003 14:44:54 -0500
Message-id: <[🔎] 87wuchg30p.fsf@strauser.com>
In-reply-to: <[🔎] 1063134027.647.12.camel@ratti.local> (Joerg Rossdeutscher's message of "Tue, 09 Sep 2003 21:00:28 +0200")
References: <[🔎] 20030907110946.GA3845@localhost> <[🔎] 20030907173424.GC21439@ursine.ca> <[🔎] 1062961535.644.204.camel@ratti.local> <[🔎] 1062961860.20018.24.camel@sonic.home> <[🔎] 1062963962.643.223.camel@ratti.local> <[🔎] 20030907214430.GC1444@riva.ucam.org> <[🔎] 1063134027.647.12.camel@ratti.local>

At 2003-09-09T19:00:28Z, Joerg Rossdeutscher <ratti@gesindel.de> writes:

>> Whoa, sure it's interesting. Consider a man-in-the-middle SSL attack: now
>> somebody else owns everything you have.

> I always thought with a SSL-connection the man in the middle just gets
> useless "binary trash"? Am I wrong?

That was the whole point: Netscape 4 has quite a few known vulnerabilities.
It may very well be the case that a MITM could snoop a session from a
Netscape 4 browser's broken SSL implementation.
-- 
Kirk Strauser

Reply to:

References:
- where is netscape 4 in testing?
  - From: Alexander Mikhailian <mikhailian@mova.org>
- Re: where is netscape 4 in testing?
  - From: Paul Johnson <baloo@ursine.ca>
- Re: where is netscape 4 in testing?
  - From: Joerg Rossdeutscher <ratti@gesindel.de>
- Re: where is netscape 4 in testing?
  - From: Mario Vukelic <mario.vukelic@dantian.org>
- Re: where is netscape 4 in testing?
  - From: Joerg Rossdeutscher <ratti@gesindel.de>
- Re: where is netscape 4 in testing?
  - From: Colin Watson <cjwatson@debian.org>
- Re: where is netscape 4 in testing?
  - From: Joerg Rossdeutscher <ratti@gesindel.de>

Prev by Date: Re: where is netscape 4 in testing?
Next by Date: Re: renice (was Disk I/O stalling whole system ..)
Previous by thread: Re: where is netscape 4 in testing?
Next by thread: Re: where is netscape 4 in testing?
Index(es):
- Date
- Thread