RE: [Half OOT] The Cons of Using Self-Signed Certificate
> From: Rob Owens [mailto:rowens@ptd.net]
> Sent: Friday, September 11, 2009 5:10 AM
> The benefit of the certificate is two-fold.
>
> 1) It encrypts traffic
>
> 2) It identifies the server
>
> Kevin was pointing out to you that benefit #2 would be lost if your
> clients do not manually install the certificates and blindly accept the
> certificate presented to them on first connection. This opens you up
> to a man-in-the-middle attack, however unlikely that might be.
>
> -Rob
If someone can sniff the packets to steal plaintext passwords, they can
also poison your DNS cache to redirect the client requests to their own
server.
Reply to: