home bbs files messages ]

Forums before death by AOL, social media and spammers... "We can't have nice things"

   comp.dcom.vpn      VPN protocols, clients, awesomeness      2,348 messages   

[   << oldest   |   < older   |   list   |   newer >   |   newest >>   ]

   Message 1,435 of 2,348   
   Larry Riffle to kate0104@hotmail.com   
   Re: Question: Digital certificates and i   
   13 Jan 05 15:08:27   
   
   From: spamtrap47@adelphia.net   
      
   kate0104@hotmail.com wrote:   
   > Suppose someone is able to compromise my DNS   
   > Suppose now I try to establish an IPSec tunnel to my Cisco concentrator   
   > but I end up connecting to a different malicious concentrator.   
   > Suppose this malicious concentrator has a valid Certificate signed by a   
   > known CA.   
   > Would my Cisco VPN client realize there's something wrong during its   
   > peer identity validation ?   
   >   
   > thank you for your answers   
   >   
      
   Unless somebody has pulled one over on the CA the common name won't match.   
      
   --- SoupGate-Win32 v1.05   
    * Origin: you cannot sedate... all the things you hate (1:229/2)   

[   << oldest   |   < older   |   list   |   newer >   |   newest >>   ]


(c) 1994,  bbs@darkrealms.ca