Geek Style
Slashdot reports: “The folks at LASEC have found a flaw in the SSL protocol. Quoting Professor Serge Vaudenay from a BBC article the security problem is in ‘the SSL protocol itself and not in how we use it or how we implement it.’ Apparently the flow only affects webmail and not banking or credit card payments and took less than an hour (160 attempts) to crack.”
OpenSSL.org posted a security advisory regarding the issue.
Note: This was not a protocol issue, but an Implemenation issue.
If you enjoyed this article, please consider sharing it!
One Response to Security hole in SSL implementation
My Book
Network Administration with FreeBSD 7 is a book for intermediate and advanced system and network administrators who wants to get more familiar with internals and extract the full potential of FreeBSD 7 operating system.
http://www.100gals.com