nationwide interception of Facebook & webmail login credentials in Tunisia

Richard Clayton richard at
Mon Jan 31 15:46:11 GMT 2011

In article <967819.51174.qm at>, Passive
PROFITS <passiveprofits at> writes

>So Cert Patrol just picked up an SSL certificate switch for 
>; here's the new SHA1 fingerprint I've got... 
>Anyone confirm they've also had a switch

Yes I have that one too...  apparently it is valid from 5Jan11 to 5Jan12

My guess would be that the previous cert was about to expire so they
have bought a new one, and now pushed it out...

... means the next push will be smack in the middle of Xmas/New Year
next year. Some lucky sysadmin will not be pleased!

I note that Google have chosen to go with a 1024bit cert again, despite
strong US Government encouragement for 2048bits. I expect that's because
they can't face making the longer certs work on mobile platforms.

richard                                                   Richard Clayton

Those who would give up essential Liberty, to purchase a little temporary 
Safety, deserve neither Liberty nor Safety. Benjamin Franklin 11 Nov 1755
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 185 bytes
Desc: not available
URL: <>

More information about the ukcrypto mailing list