IE and Konqueror Bug Makes SSL Insecure

Spad writes "The Register reports that IE and Konqueror both have a bug that allows anyone with a legit Verisign SSL certificate to issue a 'legit' certificate for a 3rd party site. IE and Konqueror don't both to check the issuer of this intermediate cert making SSL in both browsers something of a joke". Update by Hetz: if you're using KDE from CVS, the fix is inside or you can wait to next week for KDE 3.0.3 (which will have more fixes for KDE 3.0). Thanks to Waldo bastian for the blazing fast fix (95 minutes since it was reported).

It's the front page! ARG.

[debiandude]

Can't we check before we post!

IE and Konqueror don't both to check the issuer of this intermediate cert making SSL in both browsers something of a joke

Re:So?

[dasmegabyte]

Sorry for all the misspellings in this post. I had to go to the bathroom since I started typing it.

Re:Grammar?

[Winterblink]

So many Slashdotters feel they are more intelligent than the average user and the unwashed masses, yet the editors and the submitters can't properly proof read stories.

Nice summary, right there. That should tell you one thing: many slashdotters are frickin' morons (as evidenced by the anti MS bias that's reached childish levels). I've noticed this lack of proofreading as well, it's become pretty bad as of late. How hard is it to spend an extra few seconds to preview a submission or comment before clicking Submit?