Internet Infrastructure Verisign enables the security, stability and resiliency of internet infrastructure. Explore Our Capabilities. Explore Authenticated and Authoritative Resolution Two new technologies give DNS name servers an important role in improving a network's security and performance capabilities. Read More. I've found that with several applications there are entries that don't match the rest. These entries seem to patch the certificate revocation lists CRL for Verisign which i find to be quite suspicious.
Obviously the CRLs don't have anything to do with the application cracking process so far as i can tell. Is there a malicious reason to do this? Some operating systems, including Windows, want to enforce verifications of signatures of DLL. The verification entails validating the signature against the signer's public key, which is found in the signer's certificate, which itself needs to be validated.
Certificate validation includes revocation status check. In practice, a Windows OS validating a certificate will download CRL to ascertain that the certificate is not revoked. However, if the same OS cannot download the CRL, then it will just assume that the certificate is probably unrevoked. According to the normal X. However, this means here that the application does not start, and the consumer will be unhappy that is, significantly unhappier than what is already entailed by using Windows ; and it would mean that the machine cannot work without a working Internet connection, which would imply some interesting chicken-and-egg issues.
So adding an entry which prevents connections to Verisign's CRL download server can have a malicious reason: this allows the attacker to sign his nefarious code with a revoked certificate e. Pointing out that the person who made that hosts file list fat-fingered Verisign. The host actually listed doesn't seem to exist and wouldn't be referenced by Adobe.
I'd drop that line out of the hosts file, or correct it, but it appears to be a typo. I'm planning on deleting that line because other apps or websites could need to access crl. Sign up to join this community. The best answers are voted up and rise to the top. Stack Overflow for Teams — Collaborate and share knowledge with a private group. Create a free Team What is Teams? Learn more.
Is there any malicious reason to block CRLs? I've figured out that if I create my own app. Add a comment. Active Oldest Votes. Like so: Improve this answer. K Christian. This is what I had initially tried but it wasn't working.
Perhaps it was cached. I didn't try rebooting or anything but I know it wasn't picking up the change. How would I authenticode a. I have no idea, you should probably post a new question. Sign up or log in Sign up using Google. Sign up using Facebook.
Sign up using Email and Password. Post as a guest Name.
0コメント