[ale] ssl hijacking attempt

John Wells jb at sourceillustrated.com
Mon Jun 24 16:00:29 EDT 2002


Mike,

I'm using a self signed one I generated myself.  That was my first
clue...instead of a certicate issued by my domain "Source Illustrated", I
was presented with one issued by the dubious "VerySign Certificate
Authority".

Thanks for your help...

John

Mike Lockhart said:
> The chances of it being a hijacking attempt are highly improbable,
> though possible.  What kind of SSL cert are you using on your box?  Self
> signed, Trusted CA signed?
>
> On Mon, 2002-06-24 at 14:17, John Wells wrote:
>> I use squirrelmail through ssl to send and receive mail.  Today, while
>> already logged in to my mail system, I clicked a link.  The
>> Accept/Reject certificate box popped up, which was odd because I had
>> *already* established an SSL connection.
>>
>> Examining the certificate, I noticed that it said it was issued from
>> "VerySign Certificate Authority" and was originating from my box.  I
>> can only assume that it was someone trying to hijack my ssl
>> connection.
>>
>> Problem is, I can't really find a lot of good info on ssl
>> hijacking...as far as how it's done and how to prevent it.  I'm
>> assuming this doesn't necessarily mean that whoever did this has
>> hacked my box, as it wouldn't seem to make a lot of sense to go
>> through the trouble if you are already in.
>>
>> Anyway, I'm really interested in how this was done.  If anyone can
>> point me in the right direction, I'd appreciate it.
>>
>> Thanks!
>> John
>>
>>
>>
>>
>> ---
>> This message has been sent through the ALE general discussion list.
>> See http://www.ale.org/mailing-lists.shtml for more info. Problems
>> should be  sent to listmaster at ale dot org.
>>
> --
>
> ================================
> Michael Lockhart - PHP Developer
> Intercosmos Media Group [Directnic.com]
> mailto:mlockhart at intercosmos.com
> http://orbital.intercosmos.com
> ================================




---
This message has been sent through the ALE general discussion list.
See http://www.ale.org/mailing-lists.shtml for more info. Problems should be 
sent to listmaster at ale dot org.






More information about the Ale mailing list