Monthly Archives: July 2008
DNS vuln + SSL cert = FAIL
Posted: July 30, 2008 – 4:17 pm |
Author: Mike Zusman |
Filed under: Articles, Conferences, Phishing, Security Management, Web Apps
Authenticating to a web application is a mutual process. Before a user enters credentials into the application, they validate the web applications credentials: its hostname, content, and SSL certificate (assuming it uses SSL). Essentially, you validate the web site against what you know to be true (hostname and expected content). The browser validates that a [...]
openmoko: cool little linux box
The OpenMoko project ( http://www.openmoko.org ) has “freed” the cell phone. OpenMoko is an open development platform with complete hardware specs (as complete as possible) that runs linux, can be recompiled from scratch from source code, and operates as a normal “unlocked” cellular device. This news isn’t new, but it is the first time I’m [...]
