[clug] How you know your Free or Open Source Software Project is doomed to FAIL

Scott Ferguson scott.ferguson.clug at gmail.com
Thu Jul 30 12:29:47 UTC 2015


On 30/07/15 16:38, Carlo Hamalainen wrote:
> 
> 
> On 30 July 2015 4:30:40 pm AEST, James Ring <sjr at jdns.org> wrote:
>> Well, they'd have to poison the DNS and also convince one of the
>> certificate authorities trusted by wget to issue a SSL certificate
>> with Google's name on it to the attacker.
> 
> Like this?
> 
> https://www.techdirt.com/articles/20130910/10470024468/flying-pig-nsa-is-running-man-middle-attacks-imitating-googles-servers.shtml
> 
> 

Thanks Carlos, I did try searching for that to provide a citation for my
earlier comment about "that's not a hypothetical scenario". I FAILed.

Kudos to this (CLUG) list.


Kind regards



More information about the linux mailing list