Free Republic
Browse · Search 		General/Chat
Topics · Post Article

To: a fool in paradise

If you are the one putting in the “www.paypal.com” into your browser, you’re fine.

This affects the “pay with PayPal” buttons on a merchant’s website that can steer you to a phony PayPal screen that fools your browser into thinking it’s legit.


7 posted on 10/08/2009 1:39:20 PM PDT by Yo-Yo (Joe Wilson speaks for me.)
[ Post Reply | Private Reply | To 4 | View Replies ]

To: Yo-Yo

Wrong. You’re thinking of a much more primitive type of attack. This is way more sophisticated.

If I’m on your LAN (or simply have a rooted box on your LAN), I can hijack your DNS request and trick your machine into resolving your request for paypal.com to point to me instead of the real paypal.

When I do that, the only way you can know that you’re talking to a phony is via a certificate. However, this attack tricks your machine into accepting a forged certificate.

It is quite nifty.


10 posted on 10/08/2009 2:16:23 PM PDT by Omedalus
[ Post Reply | Private Reply | To 7 | View Replies ]

Free Republic
Browse · Search 		General/Chat
Topics · Post Article

FreeRepublic, LLC, PO BOX 9771, FRESNO, CA 93794
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson