Re: cert caching touch-ups

From: David Waite <mass_at_akuma.org>
Date: 2003-09-23 01:44:55 CEST

Joe Orton wrote:

>To arrange the MITM, the attacker had placed a subjectAltName
>extension on the funkycode.org cert naming svn.webdav.org, and
>then subverts the DNS for svn.webdav.org to point to a server
>hosting trojaned neon code. Then when I "svn co" to make a new
>neon release, I get trojaned code without knowing it.
>
>
What I imagine needs to happen is that the funkycode.org cert
fingerprint needs to be cached only for funkycode.org; the name
specified by the cert is ignored, and that cached value is irrelevant
for any other name/port tuple.

I agree any sort of blind, global trust is a bad idea.

-David Waite

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org
Received on Tue Sep 23 01:46:03 2003

This message: [ Message body ]
Next message: Julian Foad: "Re: Switch a file to a dir: can't switch it back to the file"
Previous message: Garrett Rooney: "Re: interesting 'svn log' bug"
In reply to: Joe Orton: "Re: cert caching touch-ups"
Next in thread: Tobias Ringstrom: "Re: cert caching touch-ups"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]