[thelist] OT: Microsoft digital certificate stolen
Judah McAuley
judah at alphashop.com
Thu Mar 22 15:59:39 CST 2001
At 03:48 PM 3/22/01 -0600, you wrote:
>How likely is it that the average web surfer will encounter this, or receive
>these popup dialog boxes, actually giving them the opportunity to reject the
>pages?
That depends on who got the signing certificates. Those certificates could
be distributed to all sorts of "interesting" organizations. That would
then make the question: How likely is it that the average web surfer will
visit a web page put together by people who don't necessarily have the
visitors best interests at heart? For those folks who stick to well known
corporate sights, this shouldn't effect their web browsing. But for those
who stray into other parts of the web, who knows? It also remains to be
seen how this could be incorporated into email-based worms. This certainly
represents the nasty side of the Chain of Trust model.
Judah
More information about the thelist
mailing list