Moxie Marlinspike releases new version of sslsniff. This tool incorporates the capability for null-prefix attacks which allows for silent MITM attack on SSL. As researchers continue to uncover flaws in the inner works of SSL, it may be time to rethink or even reconsider using it for applications like enterprise remote access VPN.
0 comments:
Post a Comment