[Gllug] IP address changes
Pete Ryland
pdr at pdr.cx
Tue Nov 28 00:53:53 UTC 2006
On 27/11/06, Jason Clifford <jason at ukfsn.org> wrote:
> On Mon, 27 Nov 2006, Nix wrote:
>
> > Encryption is only a defence if the man gets in the middle after the session
> > has started. If he's proxying you from the start, it won't help at all :/
>
> Yes this is true.
>
> Reality, as has already been pointed out, is that mitm attacks are rare
> and so it's not worth putting too much effort into preventing them.
Hang on, isn't that what the whole SSL cert trust chain is about? The
host is verified by the certificate authority (whose cert comes with
the browser), so the user can tell if there is a man in the middle
even if being proxied. Or have I missed something?
Pete
--
Gllug mailing list - Gllug at gllug.org.uk
http://lists.gllug.org.uk/mailman/listinfo/gllug
More information about the GLLUG
mailing list