|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: Niels Möller (nisse
lysator.liu.se)Date: Thu Oct 11 2001 - 11:25:10 CDT
Eric Rescorla <ekrrtfm.com> writes:
> > The expected record is the finished message; one could try hacking the
> > server to go on and verify the contents of tis message even if the MAC
> > on it is bad.
> Yes, incidentally it's also possible that the Finished message
> verify is being computed incorrectly and this is being reported
> as a MAC error. This is also quite difficult to distinguish from
> a MAC problem. :(
When talking to the Roxen server, I'm pretty sure it's the mac
verification that fails, it never gets to checking the contents of the
message. In the IIS case, I don't know for sure.
Regards,
/Niels
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]