|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
[Full-Disclosure] VerySign Class 1 Authority - bogus SSL certificate?
From: Chris van der Pennen (chris
sw.gotdns.org)
Date: Tue Jun 01 2004 - 17:09:31 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
I've been getting SSL certificates from various websites recently that are
apparently from a "VerySign Class 1 Authority" - note the 'y' in VerySign.
The certificate expired 6 December 2002.
The data in Issued To and Issued By are identical.
This smells very much like an SSL hijack attempt - can anyone shed some
light on the situation?
Chris
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]