Fedora 15 Update: sslstrip-0.9-2.fc15

updates at fedoraproject.org updates at fedoraproject.org
Wed Aug 17 00:57:51 UTC 2011


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2011-8467
2011-06-21 16:11:48
--------------------------------------------------------------------------------

Name        : sslstrip
Product     : Fedora 15
Version     : 0.9
Release     : 2.fc15
URL         : http://www.thoughtcrime.org/software/sslstrip/
Summary     : Tool that provides a demonstration of HTTPS stripping attacks
Description :
Tool that provides a demonstration of HTTPS stripping attacks that were
presented at Black Hat DC 2009 by Moxie Marlinspike. It will transparently
hijack HTTP traffic on a network, watch for HTTPS links and redirects, then map
those links into either look-alike HTTP links or homograph-similar HTTPS links.
It also supports modes for supplying a favicon which looks like a lock icon,
selective logging, and session denial

--------------------------------------------------------------------------------
Update Information:

New Package, first inclusion into Fedora.
--------------------------------------------------------------------------------
ChangeLog:

--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #555655 - Review Request: sslstrip - tool that provides a demonstration of HTTPS stripping attacks
        https://bugzilla.redhat.com/show_bug.cgi?id=555655
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update sslstrip' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------


More information about the package-announce mailing list