[TLS] Connection diversion to other subdomains
Matt McCutchen <matt@mattmccutchen.net> Thu, 28 October 2010 03:59 UTC
Return-Path: <matt@mattmccutchen.net>
X-Original-To: tls@core3.amsl.com
Delivered-To: tls@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id DFEFC3A680A for <tls@core3.amsl.com>; Wed, 27 Oct 2010 20:59:39 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.55
X-Spam-Level:
X-Spam-Status: No, score=-2.55 tagged_above=-999 required=5 tests=[AWL=0.049, BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id dbk9zP0r8Aun for <tls@core3.amsl.com>; Wed, 27 Oct 2010 20:59:38 -0700 (PDT)
Received: from homiemail-a5.g.dreamhost.com (caiajhbdccah.dreamhost.com [208.97.132.207]) by core3.amsl.com (Postfix) with ESMTP id BB4583A680F for <tls@ietf.org>; Wed, 27 Oct 2010 20:59:38 -0700 (PDT)
Received: from homiemail-a5.g.dreamhost.com (localhost [127.0.0.1]) by homiemail-a5.g.dreamhost.com (Postfix) with ESMTP id E8CCD70406A for <tls@ietf.org>; Wed, 27 Oct 2010 21:01:29 -0700 (PDT)
DomainKey-Signature: a=rsa-sha1; c=nofws; d=mattmccutchen.net; h=subject:from :to:in-reply-to:references:content-type:date:message-id :mime-version:content-transfer-encoding; q=dns; s= mattmccutchen.net; b=YxUjdw/h/PreRrGpbUWwdBJGnS74/HxEs7glThiDJqR EV5gxA687y4QRtpzSqvic5Tge8J6SO6AlFB7ZrDhWilKRTL6Xmrp3Ju+EeZjpw7q n3tpJgoBSOTk5MEI/8IdJDDXHAopDbjCUi7dJKA9bC2mM/oOg6K5tLLxdkW4wW2Y =
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=mattmccutchen.net; h= subject:from:to:in-reply-to:references:content-type:date :message-id:mime-version:content-transfer-encoding; s= mattmccutchen.net; bh=ite8nk2YbC9w72/eRPE3RjhSBv4=; b=U+Xkn1jtTi nfzgIS3EOGE7dOgZC83TDWn/AOnBbtdybTbwlp3TaaD6BEo5+taghwm4R2qaEA42 +C7JY7XSV7GmEGvRXtyn1y7LzmFYpXQ9BzDIm5nRI75QS1wtXg5uOco2Pv9ysk1N zJxdRdVOAwac9G1udHV+7bN3V7eQhEhIc=
Received: from [129.2.249.209] (ml2.student.umd.edu [129.2.249.209]) (Authenticated sender: matt@mattmccutchen.net) by homiemail-a5.g.dreamhost.com (Postfix) with ESMTPA id B7279704063 for <tls@ietf.org>; Wed, 27 Oct 2010 21:01:29 -0700 (PDT)
From: Matt McCutchen <matt@mattmccutchen.net>
To: IETF TLS WG <tls@ietf.org>
In-Reply-To: <1288147744.6053.51.camel@mattlaptop2.local>
References: <4CC765D6.6020704@KingsMountain.com> <1288145780.6053.50.camel@mattlaptop2.local> <1288147744.6053.51.camel@mattlaptop2.local>
Content-Type: text/plain; charset="UTF-8"
Date: Thu, 28 Oct 2010 00:01:28 -0400
Message-ID: <1288238488.2016.17.camel@mattlaptop2.local>
Mime-Version: 1.0
X-Mailer: Evolution 2.30.4
Content-Transfer-Encoding: 7bit
Subject: [TLS] Connection diversion to other subdomains
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/tls>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 28 Oct 2010 03:59:40 -0000
On Tue, 2010-10-26 at 22:49 -0400, Matt McCutchen wrote: > On Tue, 2010-10-26 at 22:16 -0400, Matt McCutchen wrote: > > Incidentally, it looks like lists.fedoraproject.org does not check > > either SNI or the HTTP Host header. I made a connection and indicated > > admin.fedoraproject.org in both places and it happily served me wrong > > content. I will file a ticket. > > The ticket, in case anyone is curious: > > https://fedorahosted.org/fedora-infrastructure/ticket/2455 > > Has this kind of issue been discussed before? The question remains open. But I will call it a connection diversion attack. > I wonder if many other sites are affected. I looked through my browser history for registered domains containing a TLS web server bearing a wildcard certificate and another subdomain on a different IP address. In almost all cases, the server was willing to send me wrong content when I asked for the other subdomain via SNI and HTTP Host. Strictly speaking, this is a vulnerability. Usually the effect is just goofy, though on one major web site which I won't name, it led to XSS. How can I get the message out to holders of wildcard certificates that they should prevent this attack? -- Matt
- [TLS] Server Name Indication (SNI) in an IPv6 wor… =JeffH
- Re: [TLS] Server Name Indication (SNI) in an IPv6… Simon Josefsson
- Re: [TLS] Server Name Indication (SNI) in an IPv6… Matt McCutchen
- Re: [TLS] Server Name Indication (SNI) in an IPv6… Matt McCutchen
- Re: [TLS] Server Name Indication (SNI) in an IPv6… Steingruebl, Andy
- Re: [TLS] Server Name Indication (SNI) in an IPv6… Marsh Ray
- Re: [TLS] Server Name Indication (SNI) in an IPv6… Steingruebl, Andy
- Re: [TLS] Server Name Indication (SNI) in an IPv6… Marsh Ray
- Re: [TLS] Server Name Indication (SNI) in an IPv6… Michael D'Errico
- [TLS] Connection diversion to other subdomains Matt McCutchen
- Re: [TLS] Server Name Indication (SNI) in an IPv6… Steven Bellovin
- Re: [TLS] Server Name Indication (SNI) in an IPv6… aerowolf
- Re: [TLS] Connection diversion to other subdomains Marsh Ray
- Re: [TLS] Connection diversion to other subdomains Matt McCutchen
- Re: [TLS] Connection diversion to other subdomains Martin Rex
- Re: [TLS] Server Name Indication (SNI) in an IPv6… Dean Anderson
- Re: [TLS] Connection diversion to other subdomains Florian Weimer
- Re: [TLS] Connection diversion to other subdomains Marsh Ray
- Re: [TLS] Connection diversion to other subdomains Florian Weimer
- Re: [TLS] Connection diversion to other subdomains Marsh Ray
- Re: [TLS] Connection diversion to other subdomains Joe Orton
- Re: [TLS] Connection diversion to other subdomains Marsh Ray
- Re: [TLS] Connection diversion to other subdomains Matt McCutchen