nationwide interception of Facebook & webmail login credentials in Tunisia
Richard Clayton
richard at highwayman.com
Mon Jan 31 15:46:11 GMT 2011
In article <967819.51174.qm at web110516.mail.gq1.yahoo.com>, Passive
PROFITS <passiveprofits at yahoo.com> writes
>So Cert Patrol just picked up an SSL certificate switch for
>encrypted.google.com; here's the new SHA1 fingerprint I've got...
>
>F1:BD:D4:59:78:7F:6B:EB:2F:4D:A8:72:E1:74:86:53:79:6B:3A:DD
>
>Anyone confirm they've also had a switch
Yes I have that one too... apparently it is valid from 5Jan11 to 5Jan12
My guess would be that the previous cert was about to expire so they
have bought a new one, and now pushed it out...
... means the next push will be smack in the middle of Xmas/New Year
next year. Some lucky sysadmin will not be pleased!
I note that Google have chosen to go with a 1024bit cert again, despite
strong US Government encouragement for 2048bits. I expect that's because
they can't face making the longer certs work on mobile platforms.
--
richard Richard Clayton
Those who would give up essential Liberty, to purchase a little temporary
Safety, deserve neither Liberty nor Safety. Benjamin Franklin 11 Nov 1755
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 185 bytes
Desc: not available
URL: <http://www.chiark.greenend.org.uk/pipermail/ukcrypto/attachments/20110131/e1abb155/attachment.pgp>
More information about the ukcrypto
mailing list