https MITM attack via user page Post: 302519997

Sponsored Content

Special Forums Cybersecurity https MITM attack via user page Post 302519997 by GSO on Thursday 5th of May 2011 02:46:49 PM

05-05-2011

Registered User

3) Switched to Chrome, unable to access the secure login page of my electricity supplier and with the same error, encrypted page includes non-encrypted content: https://www.britishgas.co.uk/Login/L...toploginbutton With dummy login info the page instead of reporting a login error redisplayed itself identically. The next dummy login resulted in what I assume was the correct red text and login error. The same https error occurs whether Tor is running or a direct connection or following restarting the tor service, both from the guest and host (firefox). Note though the same page opens securely on my Android. (HTML of the page giving the error attached.)

4) The Chrome delicious plugin works intermittently, with various bugs randomly exhibited (the popup redisplaying itself cleared on submit; the popup form incorrectly laid out and/or of varying height; predictive tag completion text not displaying [edit 6/5/11: displaying predictive text tags twice in the select list).

Netstat on both host and guest do not show anything that I would consider unusual (I am not a network admin. though). If anyone can point me in the direction as to what to look at next?

[Quick update to the above, about an hour or so later the network lost its sluggishness, the British Gas secured login page became fully accessible without any errors, and the Delicious plugin is working flawlessly (as it should!).]

BritishGas.tar.gz (146.7 KB)

Last edited by GSO; 05-06-2011 at 12:40 PM..

GSO

View Public Profile for GSO

Find all posts by GSO

5 More Discussions You Might Find Interesting

1. Web Development

HTTPS-Home Page issue.

Hi Folks, This might be a very question,but i have not been able to find the solution. While accessing http://16.138.32.128/ in my LAN, i am able to read the index.html placed in DocumentRoot(/var/www/html). However if i tab in https://xx.xx.xx.xx/ ,i am only able to access the default...

2. What is on Your Mind?

Fedora Man Pages Reported Attack Page?

Is firefox complaining to anyone else that this is a Reported Attack Page!? I have used this site a million times and now it feels like complaining. Fedora Manpages: Home

3. Shell Programming and Scripting

help pulling ${VARS} out of a web page user curl

Here is the code I have so far #!/bin/bash INFOF="/tmp/mac.info" curl --silent http://www.everymac.com/systems/apple/macbook_pro/specs/macbook-pro-core-2-duo-2.8-aluminum-17-mid-2009-unibody-specs.html "$INFOF" I want help putting these specs into a vars Standard Ram: value into $VAR1...

4. UNIX for Dummies Questions & Answers

How to switch the user before executing a shell script from web page??

hi, i want to execute a shell script as a different user. the flow is like this. there is a html web page from which i have to call a shell script. web server is apache. to call the shell script from html page, a perl script is required. so the html page calls the perl script and the perl...

5. Solaris

Need suggestion:- Failed HTTPS transfer to https://supportfiles.sun.com/curl

Hi Guys, I have recently started reciving below Error message Failed HTTPS transfer to https://supportfiles.sun.com/curl whenever I run /usr/local/bin/sudo /opt/SUNWexplo/bin/explorer -P -q -v from all Servers. Looks like the SSL certificate as Expired. Whenever I type...

LEARN ABOUT DEBIAN

nfanon

nfexpire(1)															       nfexpire(1)

NAME

       nfanon - netflow anonymisation

SYNOPSIS

       nfanon [options]

DESCRIPTION

       nfanon  is used to anonymise all IP addresses ( src, dst, next hop, router IP etc. ) in the netflow records using the CryptoPAn (Cryptogra-
       phy-based  Prefix-preserving Anonymization) module. The key -K is used to initialize the Rijndael cipher.  The key is either a 32 character
       string, or a 64 hex digit string starting with 0x.

	  See http://www.cc.gatech.edu/computing/Telecomm/cryptopan/ for more information about CryptoPAn.

       nfanon has several modes of operation.

       o  nfanon reads a sequence of input files, specified by -r, -R and -M and anonymises the flows in the given files. The input file arguments
       have the same syntax and meaning as nfdump(1).

       o nfanon reads a sequence of input files, specified by -r, -R and -M.  All anonymised flows are written to a single file specified by -w.

       o nfanon works as filter and reads flows from stding and writes the anonymised flows to stdout.

OPTIONS

       -r inputfile
	  Read input data from inputfile. Default is read from stdin.

       -R expr
	  Read input from a sequence of files in the same directory. expr may be one of:
	   /any/dir	     Read recursively all files in directory dir.
	   /dir/file	     Read all files beginning with file.
	   /dir/file1:file2  Read all files from file1 to file2.

	   Note: files are read in alphabetical sequence.

       -M expr
	  Read input from multiple directories. expr looks like: /any/path/to/dir1:dir2:dir3  etc.  and  will  be  expanded  to  the  directories:
	  /any/path/to/dir1, /any/path/to/dir2 and /any/path/to/dir3 Any number of colon separated directories may be given. The files to read are
	  specified by -r or -R and are expected to exist in all the given directories.  The options -r and -R must not contain any directory part
	  when used in conjunction with -M.

       -w outputfile
	  If specified writes anonymised netflow records to outputfile.

       -K key
	  The key is used to initialize the Rijndael cipher. key is either a 32 character string, or a 64 hex digit string starting with 0x.

RETURN VALUE

       Returns
	   0   No error.
	   255 Initialization failed.
	   250 Internal error.

NOTES

       None.

SEE ALSO

       nfdump(1)

BUGS

								    2009-09-09							       nfexpire(1)