Profile_bird

Hey there! thierryzoller is using Twitter.

Twitter is a free service that lets you keep in touch with people through the exchange of quick, frequent answers to one simple question: What's happening? Join today to start receiving thierryzoller's tweets.

Already using Twitter
from your phone? Click here.

thierryzoller

  1. Dear twitterverse, is anybody aware of a browser matrix, that displays what SSL/TLS versions they support. Only found very old ones, about 13 hours ago from Seesmic
  2. Lighthttpd pulls a "not my problem" -> tls renegotiation http://redmine.lighttpd.net/issues/2098 5:46 AM Dec 8th from Seesmic
  3. Intel/Vmware is a conincidence, it's a dumb service level escalation 5:46 AM Dec 8th from Seesmic
  4. stumbled across an Intel and vmware priviledge escalation vuln - while writing SSL Doc. 5:03 AM Dec 8th from Seesmic
  5. working on another report on SSL a rather .. interesting one 7:29 AM Dec 7th from Seesmic
  6. RT @ju916 Breaking 4096 bit RSA encryption the hard and the easy way - via @heisec lost&Found: http://j.mp/EWns 7:28 AM Dec 7th from Seesmic
  7. fixed a few things in the whitepaper that didn't really make sense #semantics 4:33 AM Dec 3rd from Seesmic
  8. RT @carnal0wnage: [Blog Spam] Hacking Unprotected JBOSS JMX Console Installations http://bit.ly/8evEWO 7:06 AM Nov 30th from Digsby
  9. @lseltzer : afaik no - but not an expert on tls prot 6:33 AM Nov 30th from Digsby in reply to lseltzer
  10. Update: TLS Whitepaper now includes several new ways to attack HTTPS - http://clicky.me/tlsvuln #fb 6:31 AM Nov 30th from Digsby
  11. @lseltzer : they simply don't accept renegotiations asked for by the client 6:28 AM Nov 30th from Seesmic in reply to lseltzer
  12. UPDATE:Downgrade HTTPS to HTTP and inject arbitrary RESPONSES into the stream + FTPS analysis http://clicky.me/tlsvuln 6:17 AM Nov 30th from Seesmic
  13. RT @xme: This is a bit scary to read this in a support ticket: "In the meantime, good luck and thank you for contacting Technical Support" 4:45 AM Nov 30th from Seesmic
  14. @kabel what the heck are you talking about ? :) 12:38 PM Nov 25th from Seesmic in reply to kabel
  15. @nrathaus yep :) my mistake 12:21 PM Nov 25th from Seesmic in reply to nrathaus
  16. wow, some use pagers to remotely execute code, see message 1339701 - cmd /c \\sj-siebel\Appssrvr_prd\bin\transtrt.bat = Job Number: 2973 = 0 12:18 PM Nov 25th from Seesmic
  17. 9/11 pager messages here : http://911.wikileaks.org/ 12:12 PM Nov 25th from Seesmic
  18. @ivanristic : But you have point :) Noted it down to add some 11:40 AM Nov 25th from Seesmic
  19. @Marsmensch http://www.kb.cert.org/vuls/id/867593 11:36 AM Nov 25th from Seesmic in reply to Marsmensch
  20. @ivanristic The paper was not intented for end-users. I assume most professionals are aware of the implications, once the flaw is understood 11:34 AM Nov 25th from Seesmic in reply to ivanristic