jmg
/
blog
1
0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
Browse Source

make image clickable to get larger version..

main
John-Mark Gurney 3 years ago
parent
c715ad213d
commit
34b0aa74e2
1 changed files with 1 additions and 1 deletions
Unified View
Diff Options
Show Stats Download Patch File Download Diff File
  1. +1
    -1
      content/2018/10/tls-client-authentication-leaks-user.html

+ 1
- 1
content/2018/10/tls-client-authentication-leaks-user.html View File

@@ -66,7 +66,7 @@ packets (the answer!).
I loaded the packet capture into wireshark, applied the SSL protocol I loaded the packet capture into wireshark, applied the SSL protocol
analysis and confirmed that the client certificate was present in clear analysis and confirmed that the client certificate was present in clear
text: text:
![Wireshark shows TLS handshake with client authentication, with the client certificate displayed in plaintext.]([[!!images/tls.packet.capture.screenshot.png]])
[![Wireshark shows TLS handshake with client authentication, with the client certificate displayed in plaintext.]([[!!images/tls.packet.capture.screenshot.png]])]({{ media_url('images/tls.packet.capture.screenshot.png') }})


So, there you have it. Do not use client authentication, pre-TLS 1.3, So, there you have it. Do not use client authentication, pre-TLS 1.3,
if you care about the privacy of your users. if you care about the privacy of your users.


Write Preview
Loading…
Cancel
Save