Slashdot Mirror

← Back to Stories (view on slashdot.org)

SSLStrip Now In the Wild

Posted by CmdrTaco on from the not-the-marisa-tomei-kind dept.

An anonymous reader writes "Moxie Marlinspike, who last week presented his controversial SSL stripping attacks at Black Hat Federal, appears to have released his much-anticipated demonstration tool for performing MITM attacks against would-be SSL connections. This vulnerability has been met with everything from calls for more widespread EV certificate deployment to an even more fervent push for DNSSEC."

4 of 208 comments (clear)

  1. Re:Alternatives by Anonymous Coward · · Score: 1, Funny

    I guess the question then is, what do we use as an alternative? What can we even do?

    IP over Avian Carriers! I'd like to see them do a man in the middle attack on PIGEONS!

  2. Re:Alternatives by jetsci · · Score: 5, Funny

    It's called a shotgun.

    --
    Bored at work? Play Game!
  3. Re:Alternatives by jetsci · · Score: 2, Funny

    But did he get the combination number to her chastity belt? I haven't actually seen the thing but it must exist since I can't get anywhere near there...

    --
    Bored at work? Play Game!
  4. Re:Alternatives by Lostlander · · Score: 2, Funny

    Watch out for Packet Loss It can be quite high in certain areas especially if you're rural. Also be aware of Hackers