New SSL vulnerability

Collapse
X
 
  • Time
  • Show
Clear All
new posts
  • transbetty
    Confirmed User
    • May 2013
    • 197

    #1

    New SSL vulnerability

    Hello, not sure if it was posted before.

    On Tuesday, March 3, 2015, researchers announced a new SSL/TLS vulnerability called the FREAK attack. It allows an attacker to intercept HTTPS connections between vulnerable clients and servers and force them to use weakened encryption, which the attacker can break to steal or manipulate sensitive data. This site is dedicated to tracking the impact of the attack and helping users test whether they?re vulnerable.

    The FREAK attack was discovered by Karthikeyan Bhargavan at INRIA in Paris and the miTLS team. Further disclosure was coordinated by Matthew Green. This report is maintained by computer scientists at the University of Michigan, including Zakir Durumeric, David Adrian, Ariana Mirian, Michael Bailey, and J. Alex Halderman. The team can be contacted at [email protected].
    Read more / check your browser at: https://freakattack.com/

    Sorry if it's old news on GFY.

    Tranny Sites - tranny, fetish & BDSM porn site reviews by Betty
    Tranny Ladies - online tranny dating and community portal
    Transbetty - my personal blog (articles/photos/reflections)
  • seeandsee
    Check SIG!
    • Mar 2006
    • 50945

    #2
    Nice, thanks god they cant do anything with me, no sensitive data
    BUY MY SIG - 50$/Year

    Contact here

    Comment

    • transbetty
      Confirmed User
      • May 2013
      • 197

      #3
      Originally posted by seeandsee
      Nice, thanks god they cant do anything with me, no sensitive data
      I think most processors like CCBILL are covered.

      I would be careful though running a retail site with connection to some small payment gateways. They are often patched later.

      Tranny Sites - tranny, fetish & BDSM porn site reviews by Betty
      Tranny Ladies - online tranny dating and community portal
      Transbetty - my personal blog (articles/photos/reflections)

      Comment

      • RummyBoy
        Confirmed User
        • Dec 2009
        • 2157

        #4
        BBC News - Millions at risk from 'Freak' encryption bug

        A week is a long time in virus news - its like a decade. I guess Firefox is probably safer than other browsers until the fix but it looks like Chrome is already fixed.

        Comment

        • freecartoonporn
          Confirmed User
          • Jan 2012
          • 7683

          #5
          not this shit again.
          SSD Cloud Server, VPS Server, Simple Cloud Hosting | DigitalOcean

          Comment

          • RummyBoy
            Confirmed User
            • Dec 2009
            • 2157

            #6
            Originally posted by freecartoonporn
            not this shit again.

            Comment

            • transbetty
              Confirmed User
              • May 2013
              • 197

              #7
              Haha great video response.

              I agree it's more of a "freat-out" situ, but... I wouldn't want to be 000.1% who got their processing closed for this.

              Tranny Sites - tranny, fetish & BDSM porn site reviews by Betty
              Tranny Ladies - online tranny dating and community portal
              Transbetty - my personal blog (articles/photos/reflections)

              Comment

              • transbetty
                Confirmed User
                • May 2013
                • 197

                #8
                Code:
                Chrome for Windows and all modern versions of Firefox are known to be safe.
                This vulnerability requires both server and client (browser) to be unpatched.

                Tranny Sites - tranny, fetish & BDSM porn site reviews by Betty
                Tranny Ladies - online tranny dating and community portal
                Transbetty - my personal blog (articles/photos/reflections)

                Comment

                • transbetty
                  Confirmed User
                  • May 2013
                  • 197

                  #9
                  FYI: Amerinoc patched my VPS very promptly. Thumbs up guys.

                  Tranny Sites - tranny, fetish & BDSM porn site reviews by Betty
                  Tranny Ladies - online tranny dating and community portal
                  Transbetty - my personal blog (articles/photos/reflections)

                  Comment

                  • woj
                    <&(©¿©)&>
                    • Jul 2002
                    • 47882

                    #10
                    "This report is maintained by computer scientists at the University of Michigan"

                    vulnerable sites:
                    1702 umich.edu 141.211.243.44


                    Custom Software Development, email: woj#at#wojfun#.#com to discuss details or skype: wojl2000 or gchat: wojfun or telegram: wojl2000
                    Affiliate program tools: Hosted Galleries Manager Banner Manager Video Manager
                    Wordpress Affiliate Plugin Pic/Movie of the Day Fansign Generator Zip Manager

                    Comment

                    Working...