Tricking the Self-Signed Detection

Uncategorized Add comments

In Case Study: Secure Telnet Using C-Kermit 7.1 With Stunnel, Kirk Turner-Rustin mentions that in 2001-era SSL, (section 5.2.2) it is possible to fool the detection of self-signed certificates by changing only one of the descriptive text items in the certificate generation. Maybe that alters a checksome/signature on the descriptive items, and that’s all we need.

Mind you, in 8 years, maybe that hole is patched.

Leave a Reply

WP Theme & Icons by N.Design Studio
Entries RSS Comments RSS Log in