Thats right folks...SSL is not secure and hasn't been for 5 years. I thinkk what irks me the worst here is the M$ response..." "What this means is that all the cryptographic protections of SSL don't work if you're a Microsoft IE user," Schneier added. Microsoft downplays report
Microsoft is investigating the IE flaw, said Scott Culp, manager of the Microsoft Security Response Center. Certain mitigating factors diminish the risk to users, he added.
Let's see...could those 'mitigating factors' include being smart enough to not use IE? And while we're at it...M$ 'downplays' this gaping hole in IE...real smart M$...your software has a hole that allows credit card numbers to be stolen and you say it's not a big deal? Those numbers belong to people who are YOUR customers, you heartless bastards!
Want to read the story?
http://zdnet.com.com/2100-1105-949506.html
Reply With Quote