Comments on: Dan Kaminsky’s SSL Hell

By: DarkFader

DarkFader — Wed, 01 Nov 2006 21:19:31 +0000

w00t

By: olleB

olleB — Wed, 01 Nov 2006 13:35:51 +0000

Check this out:

http://www.toolcrypt.org/rants.html?2006-10-31-why_this_isnt_secure_either

By: Dewi Morgan

Dewi Morgan — Tue, 31 Oct 2006 20:36:12 +0000

nocotigo: The reason that just putting the login form in the iframe would be bad is that you would then lose the performance benefit. It would mean that *every page* on your website would build an SSL connection.

And that's what he's trying to avoid. He wants a situation that means you get the ideal situation for:

1) Performance: never use SSL except when logging in or using the secure areas.
2) Security: always use SSL when logging in.
3) Usability: there should be a login form on every page.

The only way to avoid using SSL when surfing on regular, non-secure pages, and yet to use SSL when logging in from those same pages, is to build the SSL connection only once people have started to log in.

I'd add to his suggestion, though, that it needs to handle auto-fill-in of forms. Some browsers will automatically fill in the username and password on every page, which again destroys the performance benefit, or, if it doesn't trigger the onfocus, destroys the security benefit.

So if the login form got filled in *really fast*, then I think there are two options:

1) blank it (if you want to force them to manually type it in every time, which I would strongly NOT recommend, since it adds nothing to security, and just alienates users), or

2) make the onfocus have a bit of a delay in, so it doesn't start up SSL unless it is being manually filled, and then have an onsubmit that does the same thing as the onfocus if it finds that the iframe has not been made. None of which is difficult.

So long as this method degrades gracefully for browsers without javascript enabled (which it should), this is the ideal compromise. Unlike just using SSL for every page, it *would* require a "you need javascript to be completely secure" notice, though.

By: wesley mcgrew

wesley mcgrew — Tue, 31 Oct 2006 15:21:50 +0000

Any chance of video from this talk?

http://toorcon.org/2006/conference.html?id=13

Have heard it was very entertaining.

By: Will

Will — Tue, 31 Oct 2006 08:19:13 +0000

Not paying attention ;-)

90% of the _keys_ were on unique machines, they make up 33% of the possible machines on the net. The other 10% of keys cover the last 66% of machines.

i.e. for every 10 keys there are 9 unique machines and 27 machines sharing a key

By: oddsends

oddsends — Tue, 31 Oct 2006 05:32:29 +0000

Yes i am wrong, i switched the 2/3 and the 1/3 (he had them the other way around in the presentation)

just fix my math

By: oddsends

oddsends — Tue, 31 Oct 2006 05:19:57 +0000

Well, tj,

2/3 of servers have unique keys. Those use ninety percent of the keys that are out there. 1/3 of the machines share the remaining 10% of keys. Quick math says that keys that are not unique are used on average 4.5 times.

2/3 of servers have 90% of keys. (thus 1/3 has 45% of keys, 1/3 has 45% of key, 1/3 has 10% of keys) The last group reuses keys.

Am i wrong?

By: TJ

TJ — Tue, 31 Oct 2006 04:39:44 +0000

I don't get the math here perhaps..

If 90% of the keys were unique, then how can the remaining 10% make up 1/3 of the computer's he scanned? Or is he just extrapolating the 1/3 figure based on 10% of the billions of the SSL servers out there? (I.e, it's just a guess)?

By: nocotigo

nocotigo — Tue, 31 Oct 2006 03:12:16 +0000

Who is this guy, and why does he think this is a discovery? I’ll do him one better. Just put the entire login form in the , and then redirect the parent when the login completes.

By: william

william — Mon, 30 Oct 2006 23:44:18 +0000

interesting stuff, what a discovery. seems like someone would have found this out earlier but i guess not.