[Full-disclosure] A tool to identify the MD5 certs on FF
Memisyazici, Aras
arasm at vt.edu
Thu Jan 1 23:19:01 GMT 2009
Exec. Summary :
<snip from= http://www.codefromthe70s.org/sslblacklist.aspx>
Update 12/31/2008
SSL Blacklist now detects and warns about certificate chains that use the MD5 algorithm for RSA signatures.
</snip>
Great little FF-addon that helps you identify whether the SSL-site you are on is using a bad cert from the Debian/OpenSSL goof a while back, or now whether it is MD5 based.
Enjoy,
Aras Memisyazici
Systems Administrator
Virginia Tech
P.S. Thx Martian for writing such a plugin :D
Full-Disclosure is hosted and sponsored by Secunia.