If the MITM can do that, it doesn't need to attack cookies does it? It can just ... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		jessaustin on March 12, 2013 \| parent \| context \| favorite \| on: RC4 is kind of broken in TLS If the MITM can do that, it doesn't need to attack cookies does it? It can just impersonate the remote site and steal user-entered credentials. Sharp-eyed users or up-to-date browsers might notice the lack of https for popular sites, and also 2FA, but in general e.g. a malicious WAP has many options. Or I could be very wrong about this. Please advise.

tptacek on March 12, 2013 [–]

No, the MITM can be choosy about what traffic it relays and allow the attack to run without causing any of the connections to complete. Think network-layer MITM instead of transport-layer MITM.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact