Open main menu

Linux and Unix Users Group at Virginia Teck Wiki β

Changes

DyKnow

333 bytes added, 01:48, 30 December 2017
no edit summary
If it is preferable for the traffic to remain unencrypted for some time, using [[socat]] as a [[Socat#Cleartext_to_SSL_Tunnel_for_DyKnow|plaintext-to-SSL proxy]] allows the final end of the connection to be encrypted but the initial segment to remain unencrypted.
 
DyKnow 5.7 installed a hardcoded root certificate on student computers, allowing traffic to be intercepted in attacks similar to the Superfish vulnerability. SWAT has provided a [remediation tool https://swat.eng.vt.edu/expanded-information-regarding-dyknow-57-vulnerability] to remove the certificate and proxy features of DyKnow.
==File Format==
Anonymous user