Stories
Slash Boxes
Comments
NOTE: use Perl; is on undef hiatus. You can read content, but you can't post it. More info will be forthcoming forthcomingly.

All the Perl that's Practical to Extract and Report

use Perl Log In

Log In

[ Create a new account ]

vsergu (505)

vsergu
  (email not shown publicly)

Journal of vsergu (505)

Wednesday March 17, 2004
07:47 PM

SSL yikes

[ #17943 ]
Saw this mentioned in Risks Digest: "SSL's Credibility as Phishing Defense Is Tested". SSL includes a "plain text" encoding method (not encrypted), which doesn't require a certificate and so doesn't require any certification authority to vouch for the identity of the certificate holder. It seems to me that browsers shouldn't support that encoding method, but then it seems crazy that such a method is part of SSL in the first place. Isn't the whole point of SSL to be secure?
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.
 Full
 Abbreviated
 Hidden
More | Login | Reply
Loading... please wait.