Re: ciphire encrypted mail tool
From: Alan (a__l__a__n_at_hotmail.com)
Date: 01/21/05
- Next message: Phil Carmody: "Re: ciphire encrypted mail tool"
- Previous message: Joe Peschel: "Re: Singular they [was Re: [Lit.] Buffer overruns]"
- In reply to:(deleted message) Juergen Nieveler: "Re: ciphire encrypted mail tool"
- Next in thread: Juergen Nieveler: "Re: ciphire encrypted mail tool"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Fri, 21 Jan 2005 11:11:16 -0500
"Juergen Nieveler" <juergen.nieveler.nospam@arcor.de> wrote in message
news:Xns95E5A9F75C4FAjuergennieveler@nieveler.org...
Volker Hetzer" <volker.hetzer@ieee.org> wrote:
> How would you do an MITM?
And Juergen answered:
> Put the keyserver address in the hosts-file with a wrong IP, put a fake
> keyserver at that IP, intercept the request for other public keys and
> replace them with keys you own, then intercept the outbound messages,
> decrypt, store, reencrypt with the real public keys.
I'm not sure that would work, except perhaps in limited circumstances.
Somehow the substituted certificate would have to include the intended
recipient's email address, but the attacker's public key. All this would
have to be signed by a CA whose certificate is signed by the root CA. So
only someone trusted by the root CA could do this. So, for example, law
enforcement might be able to do this and get away with it. Someone else
might be able to do this until caught, after which their CA certificate
would likely be revoked.
Alan
- Next message: Phil Carmody: "Re: ciphire encrypted mail tool"
- Previous message: Joe Peschel: "Re: Singular they [was Re: [Lit.] Buffer overruns]"
- In reply to:(deleted message) Juergen Nieveler: "Re: ciphire encrypted mail tool"
- Next in thread: Juergen Nieveler: "Re: ciphire encrypted mail tool"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
