nationwide interception of Facebook & webmail login credentials in Tunisia
richard at highwayman.com
Mon Jan 31 15:46:11 GMT 2011
In article <967819.51174.qm at web110516.mail.gq1.yahoo.com>, Passive
PROFITS <passiveprofits at yahoo.com> writes
>So Cert Patrol just picked up an SSL certificate switch for
>encrypted.google.com; here's the new SHA1 fingerprint I've got...
>Anyone confirm they've also had a switch
Yes I have that one too... apparently it is valid from 5Jan11 to 5Jan12
My guess would be that the previous cert was about to expire so they
have bought a new one, and now pushed it out...
... means the next push will be smack in the middle of Xmas/New Year
next year. Some lucky sysadmin will not be pleased!
I note that Google have chosen to go with a 1024bit cert again, despite
strong US Government encouragement for 2048bits. I expect that's because
they can't face making the longer certs work on mobile platforms.
richard Richard Clayton
Those who would give up essential Liberty, to purchase a little temporary
Safety, deserve neither Liberty nor Safety. Benjamin Franklin 11 Nov 1755
-------------- next part --------------
A non-text attachment was scrubbed...
Size: 185 bytes
Desc: not available
More information about the ukcrypto