[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: GAK Hacks

To: [email protected] (Hal)
Subject: Re: GAK Hacks
From: sameer <[email protected]>
Date: Fri, 8 Sep 1995 21:50:38 -0700 (PDT)
Cc: [email protected]
In-Reply-To: <[email protected]> from "Hal" at Sep 8, 95 09:11:36 am
Pgp-Strong-Print: 3C AE E4 00 C2 6A 81 FF 49 4E EE 0C CD CD 1D 80
Sender: [email protected]

> 
> One would be to create a patcher which would let you change the set of
> certificate authorities accepted by the browser.  Currently the browser
> accepts at least one (an internal Netscape test CA) which is not needed
> by end users.  Maybe its public key could be statically overwritten by
> the patch program with the public key of the replacement CA.  This sounds
> simple and safe.  The patch program can confirm that the data being
> changed matches the test CA.

	Where is the public key for the test CA available? Seems
pretty trivial to take those bits and just do a bit compare against
your netscape binary to find out where the key is stored within the
binary.. 

-- 
sameer						Voice:   510-601-9777
Network Administrator				FAX:	 510-601-9734
Community ConneXion: The NEXUS-Berkeley		Dialin:  510-658-6376
http://www.c2.org (or login as "guest")			[email protected]

References:
- Re: GAK Hacks
  - From: Hal <[email protected]>

Prev by Date: Re: Web Exon A-rate
Next by Date: Open letter to Geoff Greiveldinger, DoJ
Prev by thread: Re: GAK Hacks
Next by thread: Re: GAK Hacks
Index(es):
- Date
- Thread