Slashdot Mirror

← Back to Stories (view on slashdot.org)

Comodo Says Two More RAs Compromised

Posted by CmdrTaco on from the no-time-for-compromise dept.

Trailrunner7 writes "Officials at Comodo have acknowledged that an additional two registration authorities affiliated with the company have been compromised in the wake of the high-profile attack on the company that was disclosed last week. Addressing a list of concerns about Comodo's practices raised by customers and browser vendors in the wake of the attack, Alden said that the company is now in the process of rolling out a new two-factor authentication system for its RAs. Comodo also is installing other security measures as a result of the attack."

95 of 144 comments (clear)

  1. Simple solution. by Timmmm · · Score: 5, Interesting

    Store the certificates in DNS, and access them with DNSSEC.

    http://blog.fupps.com/2011/02/16/ssl-certificate-validation-and-dnssec/

    1. Re:Simple solution. by characterZer0 · · Score: 1

      Right. Because nobody has ever hijacked a domain.

      --
      Go green: turn off your refrigerator.
    2. Re:Simple solution. by Co0Ps · · Score: 1

      Very, very, very interesting... and brilliant. This solves four major problems:

      • Trusting CA's getting hacked
      • Trusting CA's in china
      • Having to pay for expensive certificates instead of signing them ourselves

      With this solution you only have to trust your TLD authority and the root DNS certificate.

      Lets hope this gets standardized and that DNSSEC get's rolled out for all TLD's as quick as possible.

    3. Re:Simple solution. by Co0Ps · · Score: 1

      Um. You realize that "hijacking a domain" is virtually impossible with DNSSEC right?

    4. Re:Simple solution. by Anonymous Coward · · Score: 1

      I wish. Verisign and others make too much money for that to ever happen.

    5. Re:Simple solution. by Lennie · · Score: 1

      It will take years for this to be rolled out.

      Have a look at this recent post by me:
      http://slashdot.org/comments.pl?sid=2051242&cid=35598706

      --
      New things are always on the horizon
    6. Re:Simple solution. by Fastolfe · · Score: 2

      Spoofing a domain is effectively impossible, but hijacking it is not. If you can convince the registrar that you are the owner of the domain, you can change the DNS servers *and* the domain's DS records.

    7. Re:Simple solution. by Fastolfe · · Score: 2

      Except you can't meaningfully have real-world identity validation without trusted third parties. The guy owning ebay-payments-this-is-real.com can generate a cert for his web server that says "eBay", but you can't trust such an assertion if the only trust you have is the DNS hierarchy.

    8. Re:Simple solution. by jhoegl · · Score: 1

      I believe that is what DNSSEC is supposed to solve.

    9. Re:Simple solution. by Lennie · · Score: 1

      They are already doing DNSSEC-services. Would it matter to them what services they sell to people ?

      --
      New things are always on the horizon
    10. Re:Simple solution. by asdf7890 · · Score: 1

      On the "having to pay" thing, there is at least one CA with a signing cert trusted by the majority of current browsers who use that signing cert to sign free server certificates.

      See http://en.wikipedia.org/wiki/Startssl#StartSSL for details. Unfortunately under XP the certificate updates are not sent out marked as important so many people won't have them installed on that OS (and perhaps Vista too?) but this only affects IE users. So if you feel safe letting some XP+IE users get certificate warning messages and having to explain the messages to them, there is a free option.

      IIRC none of the other free cert groups (like cacert.org) have this level of trust on common browser configurations, though if startssl gain a good chunk of market share out of offering the free certs maybe other CAs will start signing low assurance certs for nothing too (rather than, as several currently do, just giving you one year free as part of some offer linked to a registrar) - which would be nice as that way even the backwards XP+IE users will trust certs you can get signed for free...

    11. Re:Simple solution. by sjames · · Score: 1

      True enough for the most part. However, it can be an actually trusted 3rd party rather than one of dozens of companies I've never heard of in countries whose governments I don't trust.

      If my friend buys something from someone and gives me rave reviews, if he also gives me their cert fingerprint with the link, I can KNOW for a fact that I am dealing with the same entity that my friend recommended. At that point, I don't know if his name is Joe Smith or Blusdfua Ykjfuiwqhfp for certain, but I don't care because I do know that he is most certainly "guy who my friend recommended".

      This even applies to things like banking. All I need to know is that the cert matches the fingerprint printed on my bank statement and available at the local branch on the online banking brochure.

      Cert fingerprints can also verify for me that this is the same site I visited last time, not a man in the middle who wasn't there before. That doesn't require a 3rd party.

    12. Re:Simple solution. by Kalriath · · Score: 1

      Just to correct that, Verisign sold off their CA operations to Symantec. They don't issue certs any more.

      They just control the gTLDs.

      --
      For a site about things like basic rights, Slashdot users sure do like to censor "dissent".
    13. Re:Simple solution. by ericn32 · · Score: 1

      No, It's supposed to sign the DS, A, MX, etc. records so that a third party or malicious service provider can't point users to other servers.

    14. Re:Simple solution. by Fastolfe · · Score: 1

      True enough for the most part. However, it can be an actually trusted 3rd party rather than one of dozens of companies I've never heard of in countries whose governments I don't trust.

      Yes, but you're still only applying that to the second-level domain. If I were to register ebay-payments-this-is-real.com, and the .com registry says my real-world identity is "Scammer", that's great. But we're delegating trust, couldn't I just create a "no-really.ebay-payments-this-is-real.com" and say that its real-world identity is "eBay"? You'd have to create a whole new system that establishes the top-level domains and which levels are authorized to make assertions about real-world identity. If I were an ISP and wanted to give out domains of the form joes-widgets.example.com, do all of my customers' SSL certificates have to say "Example, Inc."?

      Though, don't get me wrong: I'm all for having government entities establish identity, but IMO the issue of authenticating real-world identities is somewhat orthogonal to authenticating DNS "identities" (i.e. SSL public keys).

      All I need to know is that the cert matches the fingerprint printed on my bank statement and available at the local branch on the online banking brochure.

      Sure, that makes a lot of sense. But is it practical to expect your customers to manually inspect cert fingerprints? People click through cert warnings ("I don't care, just show me the damn page") all the time without realizing the implications. I think this would be a step backward.

      "Have I seen this cert before" is already a feature of most major web browsers, it's just not obvious when this is or is not the case, so I don't know how useful it is in its current form.

    15. Re:Simple solution. by Fastolfe · · Score: 1

      You are mistaken. DNSSEC relies on each level of the DNS hierarchy vouching for the keys used to sign records in the child zone. The root zone signs keys for com, and com signs records for example.com, including the keys used by example.com to sign www.example.com. If the keeper of com believes the domain has rightfully changed hands (or maybe an attacker figures out your password), new DNSSEC keys can be provided and the com zone will dutifully sign them, effectively transferring DNSSEC-provable ownership to someone else.

    16. Re:Simple solution. by sjames · · Score: 1

      couldn't I just create a "no-really.ebay-payments-this-is-real.com" and say that its real-world identity is "eBay"?couldn't I just create a "no-really.ebay-payments-this-is-real.com" and say that its real-world identity is "eBay"?

      Sure, but if you then scam my friend, instead of recommending the URL with the fingerprint of your cert, he will tell me this is a scam. You might fool Comodo, but you will not get a friend of mine to recommend your URL and fingerprint as a good place.

      Sure, that makes a lot of sense. But is it practical to expect your customers to manually inspect cert fingerprints? People click through cert warnings ("I don't care, just show me the damn page") all the time without realizing the implications. I think this would be a step backward.

      Those people cannot be helped. You could get them right now with a fake banking site and a self signed cert. As you say, they'll just click right through the warning. They will click through any warning on any trust system.

      This doesn't have to replace the current CAs, just supplement them, so at worst, it would be as good as we have now.

  2. Do you still have Comodo CA on your browser? by nereid666 · · Score: 1, Insightful

    I have deleted all the CA from Comodo. I think it must be the end of his certification authority bussines. I want more responsible of that: -Ernest Young give them the WebTrust certification. Or the auditor or the certification is useless...

    --
    Damia
    1. Re:Do you still have Comodo CA on your browser? by DriedClexler · · Score: 2

      Didn't quite follow your third sentence there, but yeah, I'm de-listing Comodo and all Comodo-authorized CAs from my trusted list. We may not have perfect certificate revocation solutions, but that'll have to do for now.

      --
      Information theory is life. The rest is just the KL divergence.
    2. Re:Do you still have Comodo CA on your browser? by fast+turtle · · Score: 2

      Hell I'm removing all CA's from the browser as I don't trust any of them. Yes it creates a bit of an issue with some websites but all I have to do is add an exception for that site instead of blindly trusting the damn certificate.

      What annoys me no end in Firefox is the fact that there is no simple way to disable all certs below a CA w/o having to disable each and everyone of them. This makes no sense. If I don't trust the Root CA then why in hell should I trust any of their subsidary CA's to be any better and why can't I uncheck a box for a Root CA and untrust the entire chain?

      --
      Mod me up/Mod me down: I wont frown as I've no crown
    3. Re:Do you still have Comodo CA on your browser? by Culture20 · · Score: 1

      Hell I'm removing all CA's from the browser as I don't trust any of them. Yes it creates a bit of an issue with some websites but all I have to do is add an exception for that site instead of blindly trusting the damn certificate.

      LOL. How do you verify them? Look up their phone numbers in the physical yellow pages, convince the phone monkeys that you need to talk to their CIO to have him read the cert to you letter by letter? ...for every https page every X years?

    4. Re:Do you still have Comodo CA on your browser? by DarkOx · · Score: 1

      Ok but if you add that exception are you not blindly trusting the remote server is who it says it is? I guess you'll know if the cert changes but then what? Do you have someone at Amazon you can call ask why the cert changed before it expired or if it has really changed? Its not as if there are not plenty of totally legitimate reasons the certificate could change.

      I am not saying you are wrong, I am just saying not trusting ANY CAs is not a practical option for most people.

      Possibly you only use a small number of sites that you have contacts at, in which case it might be a good answer for you. When I was a Network Admin I always advocated my company and our parterres exchanged self signed certificates out of band whenever web service integrations were built etc. The CAs do a totally inadequate job of identity verification, but I don't know what joe enduser is to do about it other than not participate in any online commerce.

      I mean really if you can get, or even just intercept e-mail at say root@,ssladmin@,hostmaster@,webmaster@,etc for your targets domain and determine their tax-id number (really easy) you can get a certificate in their name, from even the best CAs. I should think a low level engineer at just about any ISP could do that to at least his employers own customers without much trouble.

      --
      Repeal the 17th Amendment TODAY! Also Please Read http://www.gnu.org/philosophy/right-to-read.html
  3. Its not their fault... by Haedrian · · Score: 3, Funny

    I mean, few systems can avoid being compromised by a person with "experience of 1,000 hackers"

    http://it.slashdot.org/story/11/03/28/2159202/Lone-Iranian-Claims-Credit-For-Comodo-Hack

    1. Re:Its not their fault... by fuzzyfuzzyfungus · · Score: 2

      The world is truly lucky that the man with the experience of 1,000 hackers has not yet discovered steroids...

    2. Re:Its not their fault... by GameboyRMH · · Score: 1

      If you liked the "with the force of 1000 suns" meme, you'll love "with the experience of 1000 hackers!"*

      *Be sure to stay behind 7 proxies when hacking, and exercise caution so you don't accidentally the whole thing.

      --
      "When information is power, privacy is freedom" - Jah-Wren Ryel
    3. Re:Its not their fault... by Metabolife · · Score: 1

      Make sure to do it over starbucks wifi from the safety of your bicycle and old man mask on. while you're at it, make sure to buy the laptop from craigslist and pick it up with old man mask still on. never connect it to any other network than starbucks. bounce through at least 30 proxies including those located in russia and africa. then brag about it on facebook and go to jail.

    4. Re:Its not their fault... by jd · · Score: 1

      I dunno. If all thousand were skript kiddies, it should be easy.

      --
      It's a small world and it smells funny; I'd buy another if it wasn't for the money; Take back what I paid (SoM)
  4. Fuck... by fuzzyfuzzyfungus · · Score: 4, Insightful

    So is "rolling out a new two factor authentication system" code for "our last two-factor authentication system consisted of 'something you know', your username, and 'something you know, your password; because, despite the fact that we are a fucking CA we just can't be bothered"?

    Other than inertia, is there any reason to give these guys a second chance, rather than just drop them from the default trusted CAs list and let the company sell itself for scrap? Generating SSL certs is technologically trivial, anybody can do it at home with commonly available free software. Essentially, the only purpose of a CA is to be competent and trustworthy about who they generate certs for. CAs aren't really software or technology companies, they are much closer to the position of escrow services or trust companies. Generating certs is just the minor 'paperwork'. Generating only the right certs for only the right people is the job. If they can't do that, they are worse than useless.

    1. Re:Fuck... by LordLimecat · · Score: 1

      Honestly, that WOULD be the correct solution. Its not punishing them, but it does make them responsible for their choices, and thats pretty important to keep people from getting complacent or thinking they dont have to care who they choose.

    2. Re:Fuck... by Kookus · · Score: 1

      I work at an institution that widely uses Comodo certificates, and I still believe that the right solution is to un-trust them. Let the lawyers handle the recuperation costs with Comodo.

    3. Re:Fuck... by fuzzyfuzzyfungus · · Score: 1

      Probably about the same thing that happens to the families/friends/etc of people who get fired for serious workplace negligence, or who get sent to jail for some crime or other; only getting a new cert is easier and cheaper than replacing a person.

      It is, unfortunately, true that nuking them as a trusted CA will have some negative effects on innocent parties. However, there is essentially no form of punishment/consequences, whether leveled against a corporation or a person, that does not affect some innocent bystanders. Somehow, given that the alternative would be the abandonment of consequences, we manage to accept that.

    4. Re:Fuck... by shentino · · Score: 1

      Simple. Sue comodo for breach of warranty or something.

    5. Re:Fuck... by ArsenneLupin · · Score: 2

      Other than inertia, is there any reason to give these guys a second chance

      You mean, a third chance?

      Yes, they are too big to fail. Hey, it worked for the banks...

      Maybe CaCert only needs to get 120.000 subscribers on board, and they shouldn't have to bother with that pesky audit either?

    6. Re:Fuck... by trifish · · Score: 1

      is there any reason to give these guys a second chance

      Actually, a third chance. They had a similar problem a couple of years ago.

      (That's why I've had their certs blacklisted since then. Once a CA loses trust, it can't be restored. And it shouldn't.)

    7. Re:Fuck... by gman003 · · Score: 1

      Maybe they're in a district where "can't be arsed" is a federally-recognized handicap?

    8. Re:Fuck... by Lord+Ender · · Score: 2

      This isn't just a CA problem. Failure to use proper authentication is everywhere. Here's the rule of thumb you need to know regarding authentication:

      If the system or data is at all important, it should be virtually impossible to access it without real two-factor authentication. A CA is important. Financial systems are important. The Administrative interfaces to your company's core systems are important.

      Comodo should have required this of its customers, but more importantly, YOUR company should be requiring it of itself. Is it?

      --
      A slashdotter who didn't build his own computer is like a Jedi who didn't build his own lightsaber.
    9. Re:Fuck... by TheLink · · Score: 1

      Once a CA loses trust, it can't be restored. And it shouldn't

      How about Verisign?

      http://www.microsoft.com/technet/security/bulletin/ms01-017.mspx

      Verisign owns Thawte, Geotrust (which owns RapidSSL).

      --
    10. Re:Fuck... by fuzzyfuzzyfungus · · Score: 1

      Yup. Users hate it; but that just gives my pitying stare some extra practice.

    11. Re:Fuck... by tlhIngan · · Score: 2

      If the system or data is at all important, it should be virtually impossible to access it without real two-factor authentication. A CA is important. Financial systems are important. The Administrative interfaces to your company's core systems are important.

      Ah, but two-factor is also expensive.

      That's why banks and other financial institutions have rolled out two factor abortions that are really just more passwords.

      Wish it was Two-Factor shows how pretty much most North American banks have things set up. It's just another password, really, and both are "something you know". (And not "something you have" or "something you are")

    12. Re:Fuck... by Conare · · Score: 1

      There are some pretty inexpensive ways to do this (grid cards) so like the article you linked, I don't buy cost as an excuse. Of course I did take a photo of my buddy's grid card once as a joke, but at least it isn't personal data I could harvest from his facebook page which most of those bank questions are. If people are willing to carry a "bonus" card for every flipping retail establishment in existence, they should be willing to carry a card to keep their money secure. And I can't believe that the added cost of the security wouldn't pay for itself in the long run.

      --
      Stop Continental Drift! Reunite Gondwanaland!
    13. Re:Fuck... by BAKup · · Score: 1

      I would have liked to seen your second link, but it appears that EFF uses Comodo for their SSL cert.

      EFF, I'd think about suing Comodo for your money back on the Cert, and get one from another company.

    14. Re:Fuck... by ArsenneLupin · · Score: 1
      Sorry for that unintended piece of irony... when I copy-pasted that link, I had not yet removed the Comodo CA Certs from my browser...

      here is a plaintext link.

      ... but I guess this explains why EFF thinks Comodo is "too big too fail", hehe...

    15. Re:Fuck... by Kalriath · · Score: 1

      Verisign? You mean Symantec right?

      --
      For a site about things like basic rights, Slashdot users sure do like to censor "dissent".
    16. Re:Fuck... by TheLink · · Score: 1

      BTW Symantec owns PGP which owns "TC trustcenter" yet another CA with their certs in your browsers.

      So there'll soon be no escape from them :).

      --
    17. Re:Fuck... by BAKup · · Score: 1

      I thought it was funny as hell. I did remove the s to read the EFF article. I have to agree, they seem to have a vested interest in keeping Comodo alive.

  5. Two-Factor by Spad · · Score: 2

    Let's just hope they're not rolling out RSA Tokens :)

    1. Re:Two-Factor by Archangel+Michael · · Score: 2

      I can't wait till they roll out JRR Tolkien

      --
      Agent K: A *person* is smart. People are dumb, stupid, panicky animals, and you know it.
    2. Re:Two-Factor by Nameisyoung007 · · Score: 1

      I wouldn't trust them to quickly roll out a RSA product. With the speed, they are going to leave some holes open, and with the back-end source code probably out in the wild, it may just make the problem worse. (The source code is only going to hurt shoddy implementations of the RSA Server. People do shoddy work under time pressure).

    3. Re:Two-Factor by Abstrackt · · Score: 1

      I'd rather they didn't. Our server room smells bad enough with live bodies in there.

      --
      They say a little knowledge is a dangerous thing, but it's not one half so bad as a lot of ignorance. - Terry Pratchett
    4. Re:Two-Factor by jd · · Score: 1

      That would be nine factor via eight species authentication. Should be quite effective.

      --
      It's a small world and it smells funny; I'd buy another if it wasn't for the money; Take back what I paid (SoM)
  6. Removed by Lincolnshire+Poacher · · Score: 3, Insightful

    I have now removed Comodo as a trusted CA on my systems, and have advised colleagues of the three known occasions on which they have failed to act as a responsible CA. The game is up.

    The Mozilla inclusion policy for maintaining CAs in the default list states that:

    We reserve the right to not include a particular CA certificate in our software products. This includes (but is not limited to) cases where we believe that including a CA certificate (or setting its "trust bits" in a particular way) would cause undue risks to users' security...

    I hope that Mozilla now review the inclusion of Comodo's cert.

    1. Re:Removed by Haedrian · · Score: 1

      How about telling us mortals how to do that?

    2. Re:Removed by Spad · · Score: 2

      Well in Firefox/Seamonkey go into the security settings, Manage Certificates, Trusted Authorities and delete everything under Comodo. For IE you need to open the Windows certificate management via MMC and then do the same thing.

    3. Re:Removed by L4t3r4lu5 · · Score: 1, Funny

      Mere mortals have no place tampering with CA listings, especially when they are not far-sighted enough to tell us which OS they require instructions for without us asking.

      Derp.

      --
      Finally had enough. Come see us over at https://soylentnews.org/
    4. Re:Removed by DataDiddler · · Score: 1

      In Firefox, Preferences > Advanced > Encryption > View certificates. Go to the "authority" tab, click on the Comodo servers, click "delete or distrust."

      --
      Working...
    5. Re:Removed by gnasher719 · · Score: 2

      How about telling us mortals how to do that?

      Mortal Mac users: Open Keychain Access, click on "System Roots", type "Comodo" in the search box, Click to unlock the "System Roots" keychain, then delete the "Comodo Certificate Authority" certificate. You'll probably have to enter your login password at some point.

    6. Re:Removed by IgnoramusMaximus · · Score: 3, Informative

      You can't do that. Only user installed certs can be deleted. You have to use "Get Info" on the Comodo cert, expand the "Trust" section and set the drop-down to "Do not trust". The icon for the cert will get a red "x" indicating its untrusted.

    7. Re:Removed by Eevee · · Score: 1

      Here is Comodo's advice for removing certs from Firefox. The only difference is you would pick the Authorities tab.

    8. Re:Removed by Anonymous Coward · · Score: 2, Funny

      Mortal Kombat users: Left, left, up, right, open keychain access, right, right, right, down, Comodo, up, down, left, right and "Finish him"...

    9. Re:Removed by Ben4jammin · · Score: 1

      You may not have to do anything if you are on Windows 7. I had to do this manually for firefox. But after getting an OS update yesterday now when I go into IE I don't see Comodo listed as trusted, and I do see several listings under "untrusted publishers" for login.yahoo.com, mail.google.com, and a couple that were issued to MS and another for www.google.com all listed as "untrusted".

      and for the mortals out there I checked this by going to Tools-->Internet Options-->Content-->Certificates-->Untrusted Publishers

      Which you will probably find easier than using the mmc to do the same thing.

      Can anyone else on W7 confirm/deny this?

    10. Re:Removed by Lennie · · Score: 1

      I have some doubts Mozilla will drop Comodo, I think Comodo is 'to big to fail'.

      My guess is they issue 1000s of certs a day, most of them are valid for a year. Those would all stop to work.

      --
      New things are always on the horizon
    11. Re:Removed by Anonymous Coward · · Score: 4, Informative

      delete everything under Comodo

      And the next time Firefox is updated (which happens frequently) the Comodo certificates will be back.

      For each Comodo certificate you need to click on Edit and clear all the check boxes so the certificate won't be used for anything. This change survives updates. As I pointed out in a comment the other day (for which I received many flames) this user interface is completely inadequate for managing the hundreds of certificates that ship with Firefox.

    12. Re:Removed by KozmoStevnNaut · · Score: 1

      Select all of them and use the "Delete or distrust" button.

      --
      Eat the rich.
    13. Re:Removed by asdf7890 · · Score: 2

      Ah, the "you didn't ask the right question so you're too stupid for me to bother with you" approach.

      No. The "you haven't provided information that anyone with half a brain might know could be useful" answer. It is like when our users raise reports along the lines of "I opened a form and got an error" to which we have to reply back with "which form?" (lest we have to test every single form for every record in the DB to see which one(s) report an error) and "what was the error?" (to which the response is almost always "I don't know" or "I didn't read it" which is bloody annoying especially in places where the app explicitly says "please report the code XYZ1234 when reporting this error as it will help us find information in the code and logs that might help us find the solution faster"). Another good one is "some of the counts in report B don't look right" when report B contains many figures rolled up over a large data-set. It is just lazy not to type one example when you know at least one.

      Or... You could realize in a tech blog that just about every system is represented by the readership and a generic question and multi-part answer is appropriate. Or would you rather see it clogged with "how about Windows 2000", "how about Windows 2003", "how about Windows 2008", "how about Unbuntu", "how about Linux", "how about Unix", "how about Solaris"... questions.

      What if the responder doesn't know how to do what you are asking in *every* browser on *every* operating system available? What if that one person doesn't have time to type out seven sets of instructions on the off-chance one of them might be the set that you were looking for?

      If you are asking for help, give relevant details without asking. It helps us help you and reduces the chance that we'll just ignore you because the question is too generic and we don't have time to respond with a full article on the subject.

      Sorry to come over so snarky, but I've spent too much time lately dealing with bad issue reports (some of them from people who claim to be developers so should damn well know better), I had some crap to vent, and you raised your "viable target" flag!

      It isn't just people though, a lot of code does the same crap-condition-reporting thing. MS SQL reports "string or binary data would be truncated" when you have given it X thousand rows with YZ string columns. It *knows* at least one of the errant values, the first one it hit, so why doesn't it *report* the value as that might give massive clue as to what we have done wrong.

    14. Re:Removed by KozmoStevnNaut · · Score: 1

      I never checked in FF3 to be honest, but they probably added it in FF4.

      Just another reason to upgrade :-)

      --
      Eat the rich.
    15. Re:Removed by heypete · · Score: 1

      Microsoft released an advisory about this subject, which also included an update to blacklist those Comodo certs (the blacklisted code-signing certs from Microsoft are from a separate incident from 2001). It rolled out over Windows Update as a critical update several days ago.

      This shouldn't really be necessary, as the certs were also revoked by Comodo, and are available through their CRLs (which aren't queried by default) or by OCSP (which is). Nevertheless, the browser vendors (Microsoft in this case) are being a bit more thorough.

      However, people are now discussing removing the Comodo root certificates, as they feel that Comodo has been too irresponsible in their issuing policies (or in their RA security policies) to warrant any trust at all.

  7. Comodo is quite lax on paperwork requirements by Bloodwine77 · · Score: 2

    I used to get my SSL certs through Verisign or Thawte, who were quite expensive and required a truckload of paperwork to prove your identity to them when being issued a SSL certificate. This was years ago, so they may be more lax these days for all I know. I jumped to Comodo several years back because they were cheaper and had a lot less paperwork hassle. Generally I could get SSL certs more quickly through them than I could through Verisign or Thawte. I then managed enough SSL certs to get in to OpenSRS and I could issue SSL certs immediately with no paperwork whatsoever. I believe the small print in OpenSRS shifts the burden to you, not Comodo, to prove the identity of the organization requesting the SSL certificate. All my clients were local businesses and were easy enough for me to verify. Long story short, is that there are numerous ways around the identity verification schemes when obtaining SSL certificates. Perhaps with these recent SSL incidents the registration authorities and SSL issuers will start going back to the old days of putting people through the meatgrinder when trying to obtain SSL certificates. It may be inconvenient, but I think we've gotten to the point where the scales are tipped way too far in convenience's factor to the detriment of security and verification.

    1. Re:Comodo is quite lax on paperwork requirements by Lennie · · Score: 1

      At the end of the day, most certificates can just be considered 'domain validated'. The 'green-bar'-certificates ('Extended Validation') ones are what used to be the what they did. Maybe they even do more with EV, but all the others are just 'domain validated'. Let's not kid ourselfs.

      What does that mean ? You upload a certificate request on the site it downloads the whois-information does some automated checking from the addresses in the whois you choose which one to mail it to (or one of these: admin@domain.tld postmaster@domain.tld webmaster@domain.tld hostmaster@domain.tld ) and they send you an email and you click the link and they will do some generic checks and if it looks valid and a certificate is issues.

      Really, that is all.

      --
      New things are always on the horizon
    2. Re:Comodo is quite lax on paperwork requirements by jd · · Score: 1

      There were typically three grades of certificate in the Old Days - personal certificates (which is what you're describing), level 2 (where there were basic background checks) and level 3 (where they made the NSA's Top Secret clearance look trivial).

      These days, I'd extend the range but I'd say there should be an absolute minimum level for certain types of activity and that this should be enforceable in some way. (We know damn well that if it was voluntary, every bank and retailer would still go for the personal certs because they're dirt cheap, eliminating any real choice or any real security, with no alternative for consumers.)

      --
      It's a small world and it smells funny; I'd buy another if it wasn't for the money; Take back what I paid (SoM)
    3. Re:Comodo is quite lax on paperwork requirements by Lennie · · Score: 1

      Dirt cheap ? How about free: https://www.startssl.com/

      --
      New things are always on the horizon
    4. Re:Comodo is quite lax on paperwork requirements by jd · · Score: 1

      Dunno how expensive dirt is where you live, but it's free here. :)

      Ok, yes, personal certs were offered free by Thawte and - I think - even Verisign for a bit.

      --
      It's a small world and it smells funny; I'd buy another if it wasn't for the money; Take back what I paid (SoM)
    5. Re:Comodo is quite lax on paperwork requirements by Lennie · · Score: 1

      You can use the startssl-certs for websites too btw. Not just for mail.

      --
      New things are always on the horizon
  8. Let me google that for you by doomy · · Score: 1

    Well, apparently Comodo systems are so secure that they are hacker proof.

    --
    ...free your source and the rest would follow...
    1. Re:Let me google that for you by Lennie · · Score: 1

      Maybe Comodo is, but not their 'resellers'

      --
      New things are always on the horizon
    2. Re:Let me google that for you by kumanopuusan · · Score: 1

      Yeah, I think they bought dog curtains.

      --
      Use of the words "good", "bad" or "evil" is almost invariably the result of oversimplification.
  9. Re:New Breaches? by petermgreen · · Score: 1

    The whole CA system is fundamentally broken, your browser trusts a huge list of CAs and further those CAs have the power to delegate their authority (either through signing a cert that delegates authority or by allowing those people to request certificates with little to know further checking). The result is a huge number of people who have the power to sign certificates that your browser will treat as evidence that a web site is who they say they are. Further the CAs don't really have much interest in security beyond doing the minimum nessacery to keep themselves in the browsers root certificate lists.

    When you have a large number of people and/or entities with such a power there is a significanct chance that some of them will be corrupt, open to coersion, lax about security or some combination of those attributes.

    Commodo claimed that there were no further mis-issued certificates as a result of this but I'd be very wary of such a claim.

    --
    note: i'm known as plugwash most places but i screwd up registering that here somehow in the past and now can't register
  10. Re:new two-factor by LordLimecat · · Score: 1

    SecurID wasnt compromised, RSA was. Apparently the breach had no effect on the security of the dongles, according to RSA (and I havent seen any report to the contrary).

  11. Meaningless by ugen · · Score: 3, Insightful

    The system of "certificate authority" on which SSL security ostensibly relies, has deteriorate to an essentially meaningless state.

    This system is based primarily on trust. Trust requires at least a basic level of knowledge or understanding (this is a crucial difference between "trust" and "faith" :) ).

    If you have not taken a look at your browser's "trusted certificate authority list" - now may be the time. I am a Firefox user, and I know that the list in Firefox contains numerous organizations with trustworthy names like "QuoVadis Limited", "TÜRKTRUST Elektronik Sertifika Hizmet Salaycs" and "XRamp Global Certification Authority". Do you know any of these companies? Do you personally have any reason to trust in their judgment, honesty or integrity?

    For each company Firefox web site holds a document by some accounting firm (like the KPMG which has proven itself untrustworthy and unreliable even in matters of finance where they presumably have a clue) that purports to audit intentions and pracitces of said company wrt. issuance of said certificates. To put it simply that's worth as much as their audit of Lehman Brothers.

    Bottom line - your browser essentially allows a random selection of highest bidders or politically connected entities to define what web sites are, in turn, to be trusted. It's pointless and there is little reason to believe that anything that say, sign or claim has any value whatsoever beyond the level of background noise.

    Treat SSL the way you treat SSH - save specific certificates for sites, and watch for unexpected changes. Regardless of what the certificate or the "green location bar" say, don't trust them further than you can throw them.

    1. Re:Meaningless by airjrdn · · Score: 1

      Mod parent up. This isn't my area of expertise, but I did raise an eyebrow when I saw the "TÜRKTRUST" entry. I was glad to see someone else question it.

      --

      My Tech Posts on Twitter
    2. Re:Meaningless by St.Creed · · Score: 1

      They may be more trustworthy than Comodo or Verisign. Problem is, you can't tell.

      --
      Therefore, by the (faulty) logic you're using, you're just a cow with a keyboard - osu-neko (2604)
    3. Re:Meaningless by luizd · · Score: 1

      That's the point! Just forget about omnipotent CAs. SSL certificates should be something like PGP. The trustness of it will be the result of a web of trust WOT. This would be very cool to see big companies doing campaign: sign my cert and get a discount/bonus/etc!

  12. Drop them by medoc · · Score: 1

    They are hopeless and should be dropped from the trust lists in browsers. Watching them go out of business will be a useful remainder to the remaining ones that they should work a little not just take the money.

  13. How do you do that in Firefox? by ArsenneLupin · · Score: 1

    The UI let's me delete "Built-in tokens", but if I then leave and re-enter the list, there they are again!

    1. Re:How do you do that in Firefox? by DriedClexler · · Score: 1

      Oh, I don't actually know how to do it, I was just trying to sound elite.

      Some of the other posters on this topic are giving more specific instructions, give them a try.

      --
      Information theory is life. The rest is just the KL divergence.
  14. But what does it all mean!?! by herojig · · Score: 1

    I looked in my certificate bag in FF, and I got all kinds of Comodos there. What does that mean exactly to me, my personal data, and my small biz? thx!!!

    --
    I think therefore I can't be ~TTNH
  15. Re:new two-factor by Anonymous Coward · · Score: 1

    http://en.wikipedia.org/wiki/SecurID#March_2011_system_compromise

    In a March 21 email to customers, RSA essentially admitted that the information stolen from their internal network would allow an attacker to compromise a SecurID-protected system without having physical possession of the token:

            "7. Have my SecurID token records been taken?
            For the security of our customers, we are not releasing any additional information about what was taken. It is more important to understand all the critical components of the RSA SecurID solution.

            To compromise any RSA SecurID deployment, the attacker needs to possess multiple pieces of information about the token, the customer, the individual users and their PINs. Some of this information is never held by RSA and is controlled only by the customer. In order to mount a successful attack, someone would need to have possession of all this information."

    Barring a fatal weakness in the cryptographic implementation of the tokencode generation algorithm (which is unlikely, since it involves the simple and direct application of the extensively scrutinized AES-128 block cipher), the only circumstance under which an attacker could mount a successful attack having only information about (but not physical possession of) the token, is if the token seed records had been leaked. This is very strong evidence that the token seed records have in fact been stolen.

  16. Re:A SIMPLER solution for END USERS (HOSTS) by hairyfeet · · Score: 1

    Poster is known malware writer and troll who is advocating slowing your machine to a crawl with a 15Mb HOSTS file which will ONLY stop static ad banners.

    Much better solution is to simply blacklist the Comodo certs if you aren't on Windows, and if you are on Windows you should have already been given the cert blacklist update, checkable by going MMC...add snap in...certifications and looking under untrusted certificates. Funnily enough if one is using the Comodo browser Comodo Dragon this is also not a problem, as the extremely short TTL they use on certs had these certs dead just a couple of hours after the hack and before the attacker could use them.

    --
    ACs don't waste your time replying, your posts are never seen by me.
  17. Re:New Breaches? by rtfa-troll · · Score: 2

    There is nothing wrong with the fact that many people can sign certificates. What is wrong is that there's no easy way to mark that up and control it and there are no ways to have multiple independent signing bodies. E.g. for financial transactions I would only want to trust a bank signed by an extended verification certificate from at least two registries + the government regulatory body of the country where the bank is registered. When I'm browsing slashdot I would probably be happy just to have a self signed certificate and get warned if it changed. What is needed is essentially a web of trust like PGP with a pre-loaded set of trusted bodies which varies according to the configuration of the user. There is no reason for a Chinese user to trust an American bank or the other way round.

    With sufficiently clever defaults this could add quite a bit of security without any interaction or thinking from the user. They probably have to learn more about the colours of the address bar or something however.

    --
    =~ s,(.*),<sarcasm>$1</sarcasm>,g if any_point_you_wish();
  18. Fingers crossed by sharkey · · Score: 1

    Hope it's the RAs from my freshman and junior years in college. Those guys were both dicks.

    --

    --
    "Outlook not so good." That magic 8-ball knows everything! I'll ask about Exchange Server next.
  19. Re:New version of my browser? by Lord_Byron · · Score: 1

    Unfortunately, OCSP has been defeated with the character 3.

  20. Re:Two factor authentication is compromised by NimbleSquirrel · · Score: 1

    So they're rolling out a *new* two factor authentication system? That implies that there was an old one.... Was it RSA? Could the two events be linked?

  21. Defense In Depth by Onymous+Coward · · Score: 1

    However much you decide to trust the CAs your browser comes with, you can add some checks to the SSL validation process.

    1. Check that others are seeing the same cert that you are.
    2. Check that the cert for a site has been consistently what you're getting now.

    Tools for this: Perspectives and Certificate Patrol.

    Example details from Perspectives check of an HTTPS site
    Brief blog entry on Certificate Patrol

  22. Re:FACTS, vs. your libellous fictions & MORE.. by St.Creed · · Score: 1

    Errrr... did you forget your medication or something?

    --
    Therefore, by the (faulty) logic you're using, you're just a cow with a keyboard - osu-neko (2604)
  23. Re:Are "ad hominem" attacks the "best you've got"? by St.Creed · · Score: 1, Offtopic

    I don't need a degree in psychology to see you have issues.

    You post (and respond to my post with) an incoherent and rambling post that looks like a "stream of consciousness" posting from a consciousness that isn't very coherent. That's a warning sign for trouble if ever I saw one. Especially the use of bold and capitals.

    If you want people to actually read your post and take it serious, stop using weird interpunction, bold, and capitalization. Try to write a few coherent sentences with a start, an end, and an actual point.

    For instance, you could have replied to me like this: "Hey, you're not a licensed psychiatrist so leave your comments somewhere else, 'kay?". That's short, concise and to the point. Your post... is not.

    --
    Therefore, by the (faulty) logic you're using, you're just a cow with a keyboard - osu-neko (2604)
  24. Re:20++ mod ups for my HOSTS file posts (+5 to +1) by hairyfeet · · Score: 1

    Get some help Petey and once again correlation != causation, and you have to show your work because I'm not the one making outrageous claims If someone claims they can stretch their dick into a giant slingshot and shoot themselves to Scotland it is not the readers job to prove them wrong but the posters job to back that up with real proof, not an anecdote that says "well my cousin Joey saw me do it last Halloween!".

    I have also shown repeatedly that at the absolute reported minimum number of new pieces of malweare and infections, which you are free to pick whichever reputable website you like Securina, MSFT's malware reports, AVG, which ever, that at an absolute minimum we are talking about 1.2 million sites PER DAY with that number changing by 15,000+ PER HOUR which means even if you typed at 1 IP address PER SECOND, and never slept, and had a perfect list (which doesn't exist) you would be 14 days behind by the very first day with that number growing linearly every single day, making Petey farther and farther behind.

    But if you weren't completely batshit insane Petey I wouldn't have to explain this, because this is why everyone makes fun of you. It is so obvious it is like someone arguing gravity is actually invisible pants gnomes trying to steal your underwear. It is the classic "default allow" which has NEVER EVER worked. Because if a piece of malware isn't in magical HOPES file Petey you are royally fucked, and yet again I have shown that it is simply a roll of the dice whether you get creamed or not, simply because you will always be behind. So it is all on you Petey and your magical HOPES woobie now. You made the extravagant claims, back them up with the math. If you can't? Well then you are full of shit, case closed. Notice how ALL YOU CAN DO PETEY is throw insults and trollbomb? Why is that? I'll tell you why, because math doesn't lie and you just can't show the math You just can't, it would be like trying to mathematically prove you are not an idiot. It just can't be done.

    --
    ACs don't waste your time replying, your posts are never seen by me.