response to response

author http://brian.may.myopenid.com/ <http://brian.may.myopenid.com/@web>

Tue, 22 Jul 2008 05:28:20 +0000 (01:28 -0400)

committer Joey Hess <joey@kitenet.net>

Tue, 22 Jul 2008 05:28:20 +0000 (01:28 -0400)
author http://brian.may.myopenid.com/ <http://brian.may.myopenid.com/@web>
Tue, 22 Jul 2008 05:28:20 +0000 (01:28 -0400)
committer Joey Hess <joey@kitenet.net>
Tue, 22 Jul 2008 05:28:20 +0000 (01:28 -0400)
diff --git a/doc/bugs/ssl_certificates_not_checked_with_openid.mdwn b/doc/bugs/ssl_certificates_not_checked_with_openid.mdwn

index 171874951c3a9ccbaf47a9d72b88c5f0879ac87a..cb4c706f0631d2a4ab403dfc986ae1856859607d 100644 (file)
--- a/doc/bugs/ssl_certificates_not_checked_with_openid.mdwn
+++ b/doc/bugs/ssl_certificates_not_checked_with_openid.mdwn
@@ -22,4 +22,15 @@ For now, I want to try and resolve the issues with net\_ssl\_test, and run more
  > is good.
  > --[[Joey]]
  
  > is good.
  > --[[Joey]]
  
-[[!tag done]]
+>> Ok, so I guess the worst that could happen when ikiwiki talks to the http
+>> address is that it gets intercepted, and ikiwiki gets the wrong address.
+>> ikiwiki will then redirect the browser to the wrong address. An attacker could
+>> trick ikiwiki to redirect to their site which always validates the user
+>> and then redirects back to ikiwiki. The legitimate user may not even notice.
+>> That doesn't so seem secure to me...
+
+>> All the attacker needs is access to the network somewhere between ikiwiki
+>> and http://joey.kitenet.net/ or the ability to inject false DNS host names
+>> for use by ikiwiki and the rest is simple.
+
+>> -- Brian May
author	http://brian.may.myopenid.com/ <http://brian.may.myopenid.com/@web>
	Tue, 22 Jul 2008 05:28:20 +0000 (01:28 -0400)
committer	Joey Hess <joey@kitenet.net>
	Tue, 22 Jul 2008 05:28:20 +0000 (01:28 -0400)