[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

https (was: Re: Exploit for DNS Cache Poisoning - RELEASED)

Subject: https (was: Re: Exploit for DNS Cache Poisoning - RELEASED)
From: jeff at ocjtech.us (Jeffrey Ollie)
Date: Thu, 24 Jul 2008 18:56:24 -0500
In-reply-to: <[email protected]>
References: <[email protected]> <[email protected]> <[email protected]> <[email protected]> <[email protected]> <[email protected]>

On Thu, Jul 24, 2008 at 3:05 AM, Steven M. Bellovin <smb at cs.columbia.edu> wrote:
>
> The round trip issue affects latency, which in turn affects perceived
> responsiveness.  This is quite definitely the reason why gmail doesn't
> always use https (though it, unlike some other web sites, doesn't
> refuse to use it).

Interestingly enough, Google just added a feature to GMail to force
secure connections:

http://googlesystem.blogspot.com/2008/07/force-gmail-to-use-secure-connection.html

Jeff

Follow-Ups:
- https (was: Re: Exploit for DNS Cache Poisoning - RELEASED)
  - From: hank at efes.iucc.ac.il (Hank Nussbacher)

References:
- Exploit for DNS Cache Poisoning - RELEASED
  - From: jgreco at ns.sol.net (Joe Greco)
- Exploit for DNS Cache Poisoning - RELEASED
  - From: jabley at ca.afilias.info (Joe Abley)
- Exploit for DNS Cache Poisoning - RELEASED
  - From: jasper at unleash.co.nz (Jasper Bryant-Greene)
- Exploit for DNS Cache Poisoning - RELEASED
  - From: patrick at ianai.net (Patrick W. Gilmore)
- https (was: Re: Exploit for DNS Cache Poisoning - RELEASED)
  - From: robert at ripe.net (Robert Kisteleki)
- https (was: Re: Exploit for DNS Cache Poisoning - RELEASED)
  - From: smb at cs.columbia.edu (Steven M. Bellovin)

Prev by Date: Exploit for DNS Cache Poisoning - RELEASED
Next by Date: Paul Vixie: Re: [dns-operations] DNS issue accidentally leaked?
Previous by thread: https
Next by thread: https (was: Re: Exploit for DNS Cache Poisoning - RELEASED)
Index(es):
- Date
- Thread