Ho, by the way, #curveball #cve20200601 is not only about TLS & Authenticode... it's also for S/MIME and other signatures.
Yes, it's also valid against #Outlook mail signature verification
I hope nobody rely on it for legal / workflow validationpic.twitter.com/xds8l2gSIL
-
-
Maybe because it's (now) more complicated to bypass 'from' validation between secure and well configured SMTP servers (not always, of course)
-
And because this kind of signature (and certificate) was a little bit more complicated to generate.
- 2 more replies
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.