On Tue, Jun 07, 2005 at 10:00:48PM -0400, Scot L. Harris wrote: > > In practice, there are many ways to do this, so it's actually not > > terribly difficult. E.g. one could subvert the DNS so that the client > > unwittingly connects to the wrong server. > Agreed there are several different ways to attempt a man in the middle > attack. None of them are what I would call easy to do. :) Yeah -- "subverting the DNS" is easier said than done. I'm not sayin' it can't be done, just that pretty much anyone can *say* it. :) -- Matthew Miller mattdm@xxxxxxxxxx <http://www.mattdm.org/> Boston University Linux ------> <http://linux.bu.edu/> Current office temperature: 81 degrees Fahrenheit.
