Jump to content
Come try out our new Arcade we just put up, new games added weekly. Link at the top of the website ×

Important Information on Preventing HTTPS Exploits


djMot

Recommended Posts


  • Member ID:  3189
  • Group:  *** Clan Members
  • Followers:  93
  • Topic Count:  355
  • Topics Per Day:  0.08
  • Content Count:  5230
  • Content Per Day:  1.18
  • Reputation:   11104
  • Achievement Points:  48729
  • Solved Content:  0
  • Days Won:  112
  • Joined:  02/11/12
  • Status:  Offline
  • Last Seen:  
  • Birthday:  12/24/1957
  • Device:  Windows

This is good information that everyone should read and be aware of.

Solutions are presented that are easily enough implemented.

 

http://windowssecrets.com/top-story/protecting-yourself-from-poodle-attacks/

Link to comment
Share on other sites



  • Member ID:  2759
  • Group:  **- Inactive Registered Users
  • Followers:  17
  • Topic Count:  199
  • Topics Per Day:  0.04
  • Content Count:  3496
  • Content Per Day:  0.76
  • Reputation:   3021
  • Achievement Points:  26464
  • Solved Content:  0
  • Days Won:  3
  • Joined:  08/22/11
  • Status:  Offline
  • Last Seen:  
  • Birthday:  07/27/1990

nice... a page with all the text grey'd out...

Link to comment
Share on other sites



  • Member ID:  220
  • Group:  **- Inactive Registered Users
  • Followers:  147
  • Topic Count:  595
  • Topics Per Day:  0.11
  • Content Count:  16950
  • Content Per Day:  3.19
  • Reputation:   13538
  • Achievement Points:  129713
  • Solved Content:  0
  • Days Won:  120
  • Joined:  09/04/09
  • Status:  Offline
  • Last Seen:  
  • Birthday:  04/05/1970
  • Device:  Windows

I'm looking to pushing one of my customers to use a service available using the DD-WRT rom and a VPN service like ExpressVPN. All internet traffic is encrypted and your IP is hidden. Plus you can get content from around the world as you can have any country IP you want.

 

Anyone ever look into this?

https://www.express-vpn.com/best_provider?a_aid=zpeti2&data1=top%20vpn%20providers

Link to comment
Share on other sites



  • Member ID:  800
  • Group:  *** Clan Members
  • Followers:  152
  • Topic Count:  134
  • Topics Per Day:  0.03
  • Content Count:  6905
  • Content Per Day:  1.32
  • Reputation:   4441
  • Achievement Points:  57895
  • Solved Content:  0
  • Days Won:  5
  • Joined:  11/27/09
  • Status:  Online
  • Last Seen:  
  • Birthday:  05/29/1957
  • Device:  Windows

Good info Thanks D.J.

 

 

@@eidolonFIRE Normal page for me....

Link to comment
Share on other sites



  • Member ID:  3189
  • Group:  *** Clan Members
  • Followers:  93
  • Topic Count:  355
  • Topics Per Day:  0.08
  • Content Count:  5230
  • Content Per Day:  1.18
  • Reputation:   11104
  • Achievement Points:  48729
  • Solved Content:  0
  • Days Won:  112
  • Joined:  02/11/12
  • Status:  Offline
  • Last Seen:  
  • Birthday:  12/24/1957
  • Device:  Windows

nice... a page with all the text grey'd out...

 

All you have to do is answer one simple survey question to get all the text to show.  Sheesh - it's just not rocket science. 

All good information doesn't come absolutely free, just damn near.

Link to comment
Share on other sites



  • Member ID:  3189
  • Group:  *** Clan Members
  • Followers:  93
  • Topic Count:  355
  • Topics Per Day:  0.08
  • Content Count:  5230
  • Content Per Day:  1.18
  • Reputation:   11104
  • Achievement Points:  48729
  • Solved Content:  0
  • Days Won:  112
  • Joined:  02/11/12
  • Status:  Offline
  • Last Seen:  
  • Birthday:  12/24/1957
  • Device:  Windows

I'm looking to pushing one of my customers to use a service available using the DD-WRT rom and a VPN service like ExpressVPN. All internet traffic is encrypted and your IP is hidden. Plus you can get content from around the world as you can have any country IP you want.

 

Anyone ever look into this?

https://www.express-vpn.com/best_provider?a_aid=zpeti2&data1=top%20vpn%20providers

 

If it's like most VPN services, the proxies will be marginal in performance and availability and the speed of surfing will be severely impacted.  I know nothing of the provider you mention, nor do I believe such extreme measures are ever actually needed.  Exception might be if you are engaged in some sort of espionage or illegal activity making cloaking your identity and activity an imperative. :ninja:

Link to comment
Share on other sites



  • Member ID:  220
  • Group:  **- Inactive Registered Users
  • Followers:  147
  • Topic Count:  595
  • Topics Per Day:  0.11
  • Content Count:  16950
  • Content Per Day:  3.19
  • Reputation:   13538
  • Achievement Points:  129713
  • Solved Content:  0
  • Days Won:  120
  • Joined:  09/04/09
  • Status:  Offline
  • Last Seen:  
  • Birthday:  04/05/1970
  • Device:  Windows

If it's like most VPN services, the proxies will be marginal in performance and availability and the speed of surfing will be severely impacted.  I know nothing of the provider you mention, nor do I believe such extreme measures are ever actually needed.  Exception might be if you are engaged in some sort of espionage or illegal activity making cloaking your identity and activity an imperative. :ninja:

  1. Perfect response as I agree. What if this company held all your financial info and put in to a site like redtail?
Link to comment
Share on other sites



  • Member ID:  3189
  • Group:  *** Clan Members
  • Followers:  93
  • Topic Count:  355
  • Topics Per Day:  0.08
  • Content Count:  5230
  • Content Per Day:  1.18
  • Reputation:   11104
  • Achievement Points:  48729
  • Solved Content:  0
  • Days Won:  112
  • Joined:  02/11/12
  • Status:  Offline
  • Last Seen:  
  • Birthday:  12/24/1957
  • Device:  Windows

 

  1. Perfect response as I agree. What if this company held all your financial info and put in to a site like redtail?

 

 

Don't know what "redtail" is, but I would be expecting my financial institution to be exercising significant white-hat security measures, not scummy lurk-about-and-go-undetected measures.

Link to comment
Share on other sites



  • Member ID:  1128
  • Group:  ***- Inactive Clan Members
  • Followers:  78
  • Topic Count:  1188
  • Topics Per Day:  0.23
  • Content Count:  6490
  • Content Per Day:  1.26
  • Reputation:   4396
  • Achievement Points:  63167
  • Solved Content:  0
  • Days Won:  5
  • Joined:  02/13/10
  • Status:  Offline
  • Last Seen:  
  • Birthday:  10/21/1954
  • Device:  Windows

Don't know what "redtail" is, but I would be expecting my financial institution to be exercising significant white-hat security measures, not scummy lurk-about-and-go-undetected measures.

Don't you mean "skulking"?

Link to comment
Share on other sites



  • Member ID:  82
  • Group:  ** Registered Users
  • Followers:  0
  • Topic Count:  1534
  • Topics Per Day:  0.29
  • Content Count:  5020
  • Content Per Day:  0.94
  • Reputation:   5171
  • Achievement Points:  131490
  • Solved Content:  0
  • Days Won:  116
  • Joined:  09/02/09
  • Status:  Offline
  • Last Seen:  
  • Device:  Windows

When you said Poodle attacks i thought....544a19a2305b4_download.jpg

Link to comment
Share on other sites



  • Member ID:  2048
  • Group:  ***- Inactive Clan Members
  • Followers:  0
  • Topic Count:  294
  • Topics Per Day:  0.06
  • Content Count:  6689
  • Content Per Day:  1.38
  • Reputation:   4709
  • Achievement Points:  48999
  • Solved Content:  0
  • Days Won:  5
  • Joined:  12/15/10
  • Status:  Offline
  • Last Seen:  
  • Birthday:  05/30/1967
  • Device:  Windows

ive made adjustments.thanks

Link to comment
Share on other sites



  • Member ID:  42
  • Group:  *** Clan Members
  • Followers:  50
  • Topic Count:  338
  • Topics Per Day:  0.06
  • Content Count:  8258
  • Content Per Day:  1.55
  • Reputation:   5965
  • Achievement Points:  53557
  • Solved Content:  0
  • Days Won:  12
  • Joined:  09/01/09
  • Status:  Offline
  • Last Seen:  
  • Birthday:  01/30/1959
  • Device:  Windows

I use Chrome I have done nothing and I am not vulnerable. Why you ask ? I think its because I do not eat whiny wheaties and drive a silverado not a ford. Its that or Google has read this post and fixed it for me. TY DJ and Google :)

Link to comment
Share on other sites



  • Member ID:  561
  • Group:  ++++ Senior Admin
  • Followers:  84
  • Topic Count:  502
  • Topics Per Day:  0.10
  • Content Count:  5333
  • Content Per Day:  1.01
  • Reputation:   4610
  • Achievement Points:  41334
  • Solved Content:  0
  • Days Won:  29
  • Joined:  10/14/09
  • Status:  Offline
  • Last Seen:  
  • Birthday:  04/06/1992
  • Device:  Android

Websites that require you to answer questions to view content are as bad as websites that make you disable adblock. Hate em. I would suggest https://www.ssllabs.com/ for SSL/HTTPS related news. I would suggest https://scotthelme.co.uk/sslv3-goes-to-the-dogs-poodle-kills-off-protocol/ for instructions on protecting yourself against the attack.

 

The issue only affects servers that cater to Windows XP users really as they are the only users that may still be using SSLv3. All modern browsers/operating systems use TLSv1.0 and greater. It is only a problem to a client if they are connecting to a server that allows SSLv3 and even then is a hard exploit. 

 

If you are concerned over a site that you use HTTPS with that actually passes secure information then you can use this site to check the certifcates: https://www.ssllabs.com/ssltest/

 

@@Ruggerxi and @@loaderXI - I think me patching for POODLE is the problem behind the images served via HTTPS not loading for you.

 

duc

Link to comment
Share on other sites



  • Member ID:  252
  • Group:  +++ COD2 Head Admin
  • Followers:  71
  • Topic Count:  392
  • Topics Per Day:  0.07
  • Content Count:  6416
  • Content Per Day:  1.21
  • Reputation:   6493
  • Achievement Points:  54322
  • Solved Content:  0
  • Days Won:  30
  • Joined:  09/05/09
  • Status:  Offline
  • Last Seen:  
  • Birthday:  03/22/1965
  • Device:  Windows

@Sitting- duc I did the poodle test with out making changes and got the terrior so no problem on my end 

 

 

Still getting 404 and can not approve maps and or make changes...Also when I upload it goes to 404 but yet still shows as being uploaded (pending approval)

Edited by loaderXI
Link to comment
Share on other sites



  • Member ID:  220
  • Group:  **- Inactive Registered Users
  • Followers:  147
  • Topic Count:  595
  • Topics Per Day:  0.11
  • Content Count:  16950
  • Content Per Day:  3.19
  • Reputation:   13538
  • Achievement Points:  129713
  • Solved Content:  0
  • Days Won:  120
  • Joined:  09/04/09
  • Status:  Offline
  • Last Seen:  
  • Birthday:  04/05/1970
  • Device:  Windows

Don't know what "redtail" is, but I would be expecting my financial institution to be exercising significant white-hat security measures, not scummy lurk-about-and-go-undetected measures.

Here is my thinking and I am only still thinking. They don't keep much of the clients info on their local LAN. Redtail is a contact management database and also were the financial planning is done. Not on a local database... but all on the Internet.

I'm removing their HIPAA complaint router a sonicwall and replacing it with something much faster but it's not HIPAA compliant. To add the best security possible after locking down the system as much as possible is encrypting all their traffic on the net.

 

The service is very fast. I don't notice a performance hit at all on my 14 day trial thus far. The router/rom supports this feature out of the box. It is not only to hide you but also to protect your. For under $10 dollars a month... what better option is out there? Is it going too far in security?

 

I only want to make sure I am doing all I can to protect my customer's customers. If you have a better option.. I would love to hear it. 

Link to comment
Share on other sites



  • Member ID:  220
  • Group:  **- Inactive Registered Users
  • Followers:  147
  • Topic Count:  595
  • Topics Per Day:  0.11
  • Content Count:  16950
  • Content Per Day:  3.19
  • Reputation:   13538
  • Achievement Points:  129713
  • Solved Content:  0
  • Days Won:  120
  • Joined:  09/04/09
  • Status:  Offline
  • Last Seen:  
  • Birthday:  04/05/1970
  • Device:  Windows

Great info duc !

Link to comment
Share on other sites


Guest
This topic is now closed to further replies.
×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.