› Forums › General › General Discussion › Windows Security › FREAK, yet another securityproblem with SSL
- This topic has 4 replies, 2 voices, and was last updated 9 years, 7 months ago by Anonymous.
- AuthorPosts
-
- 5th March 2015 at 13:00 #44928
Attack of the week: FREAK (factoring the NSA for fun and profit)
This is the story of how a handful of cryptographers ‘hacked’ the NSA.
It’s also a story of encryption backdoors, and why they never quite work out the way you want them to.A group of cryptographers at INRIA, Microsoft Research and IMDEA have discovered some serious vulnerabilities in OpenSSL,
(e.g., Android) clients, and Apple TLS/SSL clients, (e.g., Safari),
that allow a ‘man in the middle attacker’ to downgrade connections from ‘strong’ RSA to ‘export-grade’ RSA.
These attacks are real and exploitable against a shocking number of websites, including government websites. - 7th March 2015 at 12:50 #61152Anonymous
You can check here if your browser is safe: https://freakattack.com/clienttest.html
Pale Moon 25.2.0 is OK.
- 7th March 2015 at 12:50 #61161Anonymous
You can check here if your browser is safe: https://freakattack.com/clienttest.html
Pale Moon 25.2.0 is OK.
- 7th March 2015 at 23:31 #61153Anonymous
Here is how to secure Internet Explorer
Tools → Internet Options → Advanced
Scroll down to the bottomMark TLS 1.2, unmark all the other SSL & TLS.
Check your browser: https://freakattack.com/clienttest.html
- 7th March 2015 at 23:31 #61162Anonymous
Here is how to secure Internet Explorer
Tools → Internet Options → Advanced
Scroll down to the bottomMark TLS 1.2, unmark all the other SSL & TLS.
Check your browser: https://freakattack.com/clienttest.html
- AuthorPosts
- You must be logged in to reply to this topic.