Beware fraudulent SSL Certificates???

[Kiva]

Friend sent me this link:

http://howto.wired.com/wiki/Secure_Your_...rtificates

Basically, talks about a SSL certificate that can be used for hackers to gain access to gmail (?).

Wired.com wrote:
Dutch SSL certificate authority (CA) Diginotar issued a fraudulent certificate for *google.com in August 2011. This means that hackers can, and have been, impersonating Gmail with a "man in the middle" attack. The certificate is believed to have been issued by Iranian agents after they hack Diginotar. The exploit may have been used to spy on Iranian citizens' e-mail.

what do you guys think?

[GGD]

Firefox released updates this week to revoke those certificates.

http://www.mozilla.org/en-US/firefox/3.6...easenotes/

What’s New in Firefox 3.6.21

Firefox 3.6.21 fixes the following issues found in previous versions of Firefox 3.6:

* Revoked the root certificate for DigiNotar due to fraudulent SSL certificate issuance (see bug 682927 and the security advisory)

You may also be interested in the Firefox 3.6.20 release notes for a list of changes in the previous version.

[Kiva]

interesting that the diginotar cert was in my keychain. I did the 'fix' anyway...

[rjmacs]

Kiva wrote:
interesting that the diginotar cert was in my keychain. I did the 'fix' anyway...

Scary... Wasn't in mine, phew!