Comodo reports: VeriSign SSL certs open to tampering... "???"

http://www.theregister.co.uk/2010/06/24/verisign_comodo_ssl_flap/
http://www.comodo.com/news/press_releases/2010/06/comodo-informs-verisign-security-vulnerability.html
https://blogs.verisign.com/ssl-blog/2010/06/incorrect_reports_of_verisign.php

…sounds like Comodo again has nothing better to do than attempting to gain some popularity by discrediting the competition ::slight_smile:

edit: now I got to admit that the public availability of such a page is worrying:
hxxps://pki.pinkroccade.com/premiumssl/services/globalserver/search.htm

…you end up on a page with revoking and renewing buttons, unusable without the proper passphrase or something, but still, there shouldn’t be a direct link to such stuff without login in first…

example on pic:

http://regmedia.co.uk/2010/06/24/pinkroccade_screen.jpg

You can read it more at Comodo Forum

Verisign SSL hackable - Comodo exposes, Verisign denies https://forums.comodo.com/general-discussion-off-topic-anything-and-everything/verisign-ssl-hackable-comodo-exposes-verisign-denies-t58317.0.html

Comodo overtakes Verisign as the no 1 High Assurance Certificate Provider https://forums.comodo.com/general-discussion-off-topic-anything-and-everything/comodo-overtakes-verisign-as-the-no-1-high-assurance-certificate-provider-t58425.0.html

Kettle and Black comes to mind (as in the pot calling the kettle black), not so long back it was reporting that Comodo sold SSL certs to dodgy people as there doesn’t appear to be any check that the people are who they say they are, etc. etc.

So it was entirely possible for a malicious site/person to be sold an SSL cert making it appear to be more legit/genuine.

Comodo has it’s own agenda ;D
Numbers are very easy to spin. It’s done all the time. :slight_smile:

See

Comodo + fake meds

Seems Comodo still aren’t bothering to check who they’re supplying SSL certificates to. Nice to know they give a damn isn’t it.

http://hphosts.blogspot.com/2010/06/comodo-fake-meds.html

nice find >>> these are some of the top spammers worldwide , wondering if this has been posted on Comodo forums…

Yes it has :wink:

well it’s on twitter too now ;D

lol sounds like Comodo was not alone on the job, Verisign involved too :smiley:
http://msmvps.com/blogs/hostsnews/archive/2009/08/08/1714249.aspx

Link please :o Logos

http://twitter.com/logo_s/statuses/17076037371 :smiley:

Thanks buddy :wink:

Edit: Logos please go back and check the last link on twitter it not working :wink:

the two links I included in that tweet work here…

extremely interesting link posted (on Comodo forums):
http://www.ccssforum.org/malware-certificates.php

okay guys, they’re all in the business of providing ssl certs to the bad guys it seems :smiley:

Just pay them and they do whatever you want… :frowning:
asyn

Here you go. :wink:

Better use this… ;D
asyn

I wonder if Logos could figure out which is better ???

can you spell your own name Yokenny?

You have my permission tho kill this thread. ;D After all, it’s only more advertising for Comodo… :frowning: