Comment by KirillPanov
2 years ago
Read it again:
> they would have to do their own client-side TLS handshake
By intercepting the STARTTLS port the attacker can merely decrypt -- rather than, as you wrote, decrypting and re-encrypting.
2 years ago
Read it again:
> they would have to do their own client-side TLS handshake
By intercepting the STARTTLS port the attacker can merely decrypt -- rather than, as you wrote, decrypting and re-encrypting.
This is not what the attackers did however. From the original article (not this one):
> Traffic dump on port 5222, the connection is hijacked on application level (L7), the server receives replaced ClientHello message from the client.
I don't know what jabber.ru's policy is, it's running a very old version of ejabberd. But you would be hard-pressed to find an XMPP server that would allow authentication without TLS. Starttls makes no difference.