v**o
发帖数: 4956 | 1 http://www.mcsholding.com/MCSResponse.aspx
MCS had deleted the certificate immediately from the firewall once gotten
notified by CNNIC for the incident, at same time, MCS had submitted an
incident report to CNNIC and all the concerned parties on the same day of
notification.
MCS confirms that the reported issue is a human mistake that took place
unintentionally through a single PC inside MCS Lab which had been dedicated
for testing purposes. Quoting google spokesman, confirms: "We have no
indication of abuse, and we are not suggesting that people change passwords
or take other action". Claims by some public reports are inconsistent with
statement by Google spokesman for abuse or spying activity for any traffic:
“Google does not, however, believe the certificates were used for that
purpose”. As stated by Google spokesman. |
k******1
发帖数: 2883 | |
v**o
发帖数: 4956 | 3 这个Lab firewall 就是长城防火墙吧? |
h*******u
发帖数: 15326 | 4 搞成大局域网好,我鳖的山寨经济直接垮台
dedicated
passwords
【在 v**o 的大作中提到】
: http://www.mcsholding.com/MCSResponse.aspx
: MCS had deleted the certificate immediately from the firewall once gotten
: notified by CNNIC for the incident, at same time, MCS had submitted an
: incident report to CNNIC and all the concerned parties on the same day of
: notification.
: MCS confirms that the reported issue is a human mistake that took place
: unintentionally through a single PC inside MCS Lab which had been dedicated
: for testing purposes. Quoting google spokesman, confirms: "We have no
: indication of abuse, and we are not suggesting that people change passwords
: or take other action". Claims by some public reports are inconsistent with
|
L*********s
发帖数: 3063 | 5 美帝光全世界卖域名每年赚多少钱?
dedicated
★ 发自iPhone App: ChineseWeb 8.0.1
【在 v**o 的大作中提到】
: http://www.mcsholding.com/MCSResponse.aspx
: MCS had deleted the certificate immediately from the firewall once gotten
: notified by CNNIC for the incident, at same time, MCS had submitted an
: incident report to CNNIC and all the concerned parties on the same day of
: notification.
: MCS confirms that the reported issue is a human mistake that took place
: unintentionally through a single PC inside MCS Lab which had been dedicated
: for testing purposes. Quoting google spokesman, confirms: "We have no
: indication of abuse, and we are not suggesting that people change passwords
: or take other action". Claims by some public reports are inconsistent with
|
X*******G
发帖数: 14887 | 6 虎嗅注:Google在4月1日更新了安全博客,宣布旗下产品删除CNNIC 根证书。Chrome浏
览器将释出更新移除对CNNIC证书的信任。
本文内容来自 Solidot 。
CNNIC根证书安全遭质疑?
Mozilla早在5年前就争论过CNNIC根证书的安全性,而促使Google此次痛下杀手的原因
是埃及MCS Holding公司使用CNNIC签发的中级证书为多个Google域名签发了假的证书。
为了帮助受影响的客户,Google将使用白名单允许在短时间内继续信任CNNIC现有的证
书,CNNIC在实现证书透明度和改进流程防止未来再次发生类似事故后可以提出撤销这
一决定的申请。
CNNIC发表声明谴责Google
在Google宣布旗下产品删除CNNIC根证书之后,CNNIC发表英文声明谴责Google。声明称
,Google的决定是“不可接受的”和“无法理解的”,CNNIC呼吁Google充分的考虑用
户的权利和利益。
CNNIC称已发行的证书不受此次事件的影响。Google的Chrome浏览器在中国相当流行。 |
Y****N
发帖数: 8694 | 7 CNNIC为啥要在乎一个在国内根本不存在的goodle?
码工们给解释下?
【在 X*******G 的大作中提到】
: 虎嗅注:Google在4月1日更新了安全博客,宣布旗下产品删除CNNIC 根证书。Chrome浏
: 览器将释出更新移除对CNNIC证书的信任。
: 本文内容来自 Solidot 。
: CNNIC根证书安全遭质疑?
: Mozilla早在5年前就争论过CNNIC根证书的安全性,而促使Google此次痛下杀手的原因
: 是埃及MCS Holding公司使用CNNIC签发的中级证书为多个Google域名签发了假的证书。
: 为了帮助受影响的客户,Google将使用白名单允许在短时间内继续信任CNNIC现有的证
: 书,CNNIC在实现证书透明度和改进流程防止未来再次发生类似事故后可以提出撤销这
: 一决定的申请。
: CNNIC发表声明谴责Google
|
L*1
发帖数: 11537 | 8 现在看来google从一开始就知道这只不过是一个小错误而已。中方肯定想利用证书达到
某种目的,但这个小错误肯定不是中方想看到的。
google这样搞肯定最后不是CNNIC输。就像美国佬说的“too big to fail”。只不过恶
心一下CNNIC而已。 |
s*****r
发帖数: 43070 | 9 来自中国的服务被客户端不信任,比如chrome
【在 Y****N 的大作中提到】
: CNNIC为啥要在乎一个在国内根本不存在的goodle?
: 码工们给解释下?
|
Y****N
发帖数: 8694 | 10 那又怎么样?
别用chrome就行了啊
国内很多人用chrome吗?这是google的产品啊
【在 s*****r 的大作中提到】
: 来自中国的服务被客户端不信任,比如chrome
|
v**o
发帖数: 4956 | |
