User Profile

wbocash

New Contributor

Joined 7 years ago

2 Posts

User Widgets

Contributions

Re: Clients create Self-signed CA Certificate
We use Tenable Nessus for vulnerability scanning, but I'd assume any scanner would detect a self-signed CA certificate as a vulnerability. Here are more details on the vulnerability: The following certificate was found at the top of the certificate chain sent by the remote host, but is self-signed and was not found in the list of known certificate authorities. This nullifies the use of SSL as anyone could establish a man-in-the-middle attack against the remote host. Thanks!
7 years ago Place Central Discussions
3.9KViews
0likes
1Comment
Clients create Self-signed CA Certificate
Is there a way to stop clients from creating a self-signed CA certificate. Problem is that they are not publically trusted so we are inundated with security vulnerabilties.
Solved
7 years ago Place Central Discussions
4KViews
0likes
11Comments