http://www.pcworld.com/businesscenter/article/239112/google_says_gmail_attack_focused_on_iranian_targets.html
They’ve since revoked the certificate but not before it was successfully used to perform several man-in-the-middle attacks. Given the seriousness of the breach, removing the offending certificate authority (DigiNotar) from your browser’s list of trusted authorities (both at home and at work) is probably reasonable.
Some instructions to help:
* *
*Firefox:*
http://support.mozilla.com/en-US/kb/deleting-diginotar-ca-cert
Chrome:
go under options -> under the hood -> manage certificates -> trusted root certificates -> edit DigiNotar and disable all the trust settings.
Internet Explorer:
http://www.gainesvillecomputer.com/blog/fake-ssl-certificate.html
3 comments:
Thanks. Work computer is cleansed now to do it at on the personal computer.
Fucking Iranians....
what about safari on the mac?
Thanks Jae. I don't have authorization to change it at work so I forwarded it to our information security department. Bet I'll look like a big genius now :)
Post a Comment