heise SSL Guardian: protection against unsafe SSL certificates

Https connections are often used to transfer important data, such as passwords, PINs, or credit card numbers. The browser ensures that the sender can be identified with a valid certificate and that the transferred data are encrypted. An error in the Debian Linux distribution has generated numerous certificates that are child’s play to crack. Many servers still use these weak certificates, even though it is impossible to establish a secure connection using them. The heise SSL Guardian checks the SSL certificates and warns you when it detects a weak one.

All Windows applications that use Windows CryptoAPI will be protected by SSL Guardian. This includes Internet Explorer and Outlook Express, as well as Windows Mail. However, SSL Guardian does not protect Firefox and Opera as these use their own crypto libraries and not CryptoAPI. In order to protect Firefox, the Firefox SSL Blacklist extension is needed, as this has a similar function.

The Guardian support Windows 2000, XP and Vista Operating Systems and is free.
There are two versions with different sized lists. The first is for users that have adequate bandwidth and time. The second is a third as large, but still detects more than 98% of the weak certificates.

More info and download: heise Security

July 12, 2008 - Posted by Smokey | Advisories, Downloads, General, News, Security, Vulnerabilities | encrypted data, error Debian Linux distribution, freeware, heise SSL Guardian, https secure connections, SSL Blacklist, SSL certificates, validated, Windows CryptoAPI | No Comments Yet

No comments yet.

« Previous | Next »

Introduction

weblog1

smokey_hat2
.
Welcome to Smokey’s Security Weblog!

Like my board Smokey’s Security Forums, this blog is mainly devoted to Security and all related issues. However, other issues like e.g. major occurances on my forum and social topics will be blogged too.

My forum offer free security and malware related Support, Help, Advice and Education.

As extra service we have a HijackThis & OTL (formerly OTListIt2) Logs Analyzing and Malware Removal/Cleaning Help Forum, full qualified HJT/OTL Analysers/Malware Hunters will be pleased to help you for free to clean your malware infected PC.

We are hosting and maintaining the Official Jetico Inc. Support Forums, including the following products:

- Jetico Personal Firewall V1
- Jetico Personal Firewall V2
- Jetico BestCrypt for Windows
- Jetico BestCrypt for Linux
- Jetico BestCrypt Volume Encryption
- Jetico BCArchive
- Jetico BCWipe for Windows
- Jetico BCWipe for UNIX

Disclaimer: information in this blog can be based on (not confirmed) statements of (anonymous) sources, Smokey’s Security Weblog don’t take any responsabilty for the credibility of these sources and their statements.

The posts/articles in this blog can be supplemented with so called “Possibly related posts” links. Because these links are automatically generated by WordPress.com, Smokey’s Security Weblog have no influence on the links itself and/or content of them. Therefore this Weblog don’t take any responsability for these links and all related issues.

About Copyright and this Blog: it is allowed to reproduce (parts of) posts in this blog if this reproduction is provided with a direct link to the original blog post. It is NOT allowed to copy, use and/or reproduce any image or blog banner.

Blog comments policy: to restrain indecent and off-topic comments and spam, comments are reviewed before publishing. Therefore, delay in comment publishing is unavoidable. Obligatory language of comments is English.
.