Author Topic: Comodo - SSL issues (Read 83550 times)

doktornotor · « **Reply #60 on:** March 25, 2011, 05:23:22 PM »

Quote from: Logos on March 25, 2011, 05:17:36 PM

lol yeah I know, but I don't use Safari desktop at all, I just use the mobile version where there's no options at all see screen shot, add to that private data clearing, web site storage, and you've seen all safari settings on iPhone/iPod

edit: and no there is no security settings section in iOS

That is a grand fail.

There's really no other browser for this thing?

Hermite15 · « **Reply #61 on:** March 25, 2011, 05:31:57 PM »

Quote from: doktornotor on March 25, 2011, 05:23:22 PM

Quote from: Logos on March 25, 2011, 05:17:36 PM
lol yeah I know, but I don't use Safari desktop at all, I just use the mobile version where there's no options at all see screen shot, add to that private data clearing, web site storage, and you've seen all safari settings on iPhone/iPod

edit: and no there is no security settings section in iOS

That is a grand fail. There's really no other browser for this thing?

there's Opera mini, and it's crap, a stripped down version of Opera Mobile, lagging like hell. All the coding work is done at server level. Otherwise there's "Firefox home", just a oneway synced interface with FF4.

Okay basically Apple doesn't allow the installation of a full third party browser on iDevices. Meaning that due to Apple restrictions, full FF4 mobile for instance or Opera mobile will never be available on iPhone/iPod/iPad.

ps: and last but not least, when you install the stripped down versions I described, you get an alert from Apple warning you that you're installing software that may contain adult content

sorry for the off topic guys

doktornotor · « **Reply #62 on:** March 25, 2011, 05:35:13 PM »

Quote from: Logos on March 25, 2011, 05:31:57 PM

Okay basically Apple doesn't allow the installation of a full third party browser on iDevices.

Edit: ROTFLMAO @ XXX warning.

Hermite15 · « **Reply #63 on:** March 25, 2011, 05:38:15 PM »

@doktornotor read my ps in the last post

Lisandro · « **Reply #64 on:** March 25, 2011, 10:38:09 PM »

Quote from: Tech on March 25, 2011, 04:07:05 PM

SSL Guard (some comments are related to lack of browsing).

Not compatible with Firefox 4.

Quote from: Tech on March 25, 2011, 04:07:05 PM

Certificate Patrol.

Hmmm... Not sure if it is really working.

Asyn · « **Reply #65 on:** March 25, 2011, 10:57:23 PM »

More related reading stuff...

Revocation doesn't work
http://www.imperialviolet.org/2011/03/18/revocation.html

Quote

You can configure Firefox to be strict about checking if you wish: security.OCSP.require in about:config

Fake SSL Certificate Incident Highlights Flaws in DNS: Comodo CEO
http://www.eweek.com/c/a/Security/Fake-SSL-Certificate-Incident-Highlights-Flaws-in-DNS-Comodo-CEO-440985/

Protect Safari from Fraudulent Digital Certificates
http://blog.intego.com/2011/03/24/protect-safari-from-fraudulent-digital-certificates/

doktornotor · « **Reply #66 on:** March 25, 2011, 11:11:18 PM »

Quote from: Asyn on March 25, 2011, 10:57:23 PM

Revocation doesn't work
http://www.imperialviolet.org/2011/03/18/revocation.html

Hmmm, so...

Quote

A much better solution would be for certificates to only be valid for a few days and to forget about revocation altogether. This doesn't mean that the private key needs to change every few days, just the certificate.

I find this idea plain ridiculous. Not really keen on calling my bank every X days to verify the certificate fingerprint. Uh.

Asyn · « **Reply #67 on:** March 25, 2011, 11:22:09 PM »

Quote from: doktornotor on March 25, 2011, 11:11:18 PM

Hmmm, so...

The quoted part might be interesting to some.

Asyn · « **Reply #68 on:** March 26, 2011, 04:34:03 PM »

Comodo Certificate Issue – Follow Up
http://blog.mozilla.com/security/2011/03/25/comodo-certificate-issue-follow-up/

Quote

In hindsight, while it was made in good faith, this was the wrong decision. We should have informed web users more quickly about the threat and the potential mitigations as well as their side-effects.

Lisandro · « **Reply #69 on:** March 26, 2011, 04:43:20 PM »

Thanks Asyn, very good and serene reading.

Hermite15 · « **Reply #70 on:** March 26, 2011, 05:19:02 PM »

yeah Asyn, that's interesting, proof that people, Mozilla here, won't take Comodo's explanations for granted and will keep investigating. I bet MS, Skype, Google and Yahoo are doing the same, the issue is too bad to be forgotten with a revocation list and a few patches, there's too much involved, global internet security and privacy are involved. Not even mentioning that on the legal side, there's probably an investigation going on at administration level in the US.

Asyn · « **Reply #71 on:** March 26, 2011, 05:39:48 PM »

mozilla wiki - CA:Comodo Misissuance Response
https://wiki.mozilla.org/CA:Comodo_Misissuance_Response

Asyn · « **Reply #72 on:** March 26, 2011, 07:10:19 PM »

Quote from: Tech on March 26, 2011, 04:43:20 PM

Thanks Asyn, very good and serene reading.

NP, Tech.

Cast · « **Reply #73 on:** March 28, 2011, 07:03:00 PM »

comomod pasted this on there facebook page
http://pastebin.com/74KXCaEZ

Hermite15 · « **Reply #74 on:** March 28, 2011, 07:59:10 PM »

Quote from: Castayr on March 28, 2011, 07:03:00 PM

comomod pasted this on there facebook page
http://pastebin.com/74KXCaEZ

also this:
http://forums.comodo.com/news-announcements-feedback-cis/cis-certifications-test-results-reviews-t61263.0.html;msg505376#msg505376

okay ... I'm not sure the second link has anything to do with this thread

Author Topic: Comodo - SSL issues (Read 83550 times)

doktornotor

Re: Comodo - SSL issues

Hermite15

Re: Comodo - SSL issues

doktornotor

Re: Comodo - SSL issues

Hermite15

Re: Comodo - SSL issues

Lisandro

Re: Comodo - SSL issues

Asyn

Re: Comodo - SSL issues

doktornotor

Re: Comodo - SSL issues

Asyn

Re: Comodo - SSL issues

Asyn

Re: Comodo - SSL issues

Lisandro

Re: Comodo - SSL issues

Hermite15

Re: Comodo - SSL issues

Asyn

Re: Comodo - SSL issues

Asyn

Re: Comodo - SSL issues

Cast

Re: Comodo - SSL issues

Hermite15

Re: Comodo - SSL issues