ZDNet

Researchers exploit SSL and domain flaws

Two researchers have independently uncovered flaws in the way domain names are verified on the internet, which could allow attackers to impersonate a site and steal information from unsuspecting ...
TechCrunch

With Google Domains, Let’s Raise Prices And Make SSL Certificates Free

Domain registration is a bit like renewing license plates at the Department of Motor Vehicles. It’s the annual tradition for web developers to secure their address on our public Internet by filling ...
Network World

Internal-use SSL certificates pose security risk for upcoming domain extensions

The practice of issuing SSL certificates for internal domain names with unqualified extensions could endanger the privacy and integrity of HTTPS communications for upcoming generic top-level domains ...
Ars Technica

LDAP over SSL and Certifcates for a .local domain

hoping some one has seen this issue and can lend a hand here. I've been tasked with setting up LDAP over SSL (TLS) for a Windows domain controller. This requires an SSL certificate to encrypt LDAP ...
Ars Technica

Bogus SSL certificate for Windows Live could allow man-in-the-middle hacks

Microsoft is scrambling to block a fraudulent HTTPS certificate that was issued for one of the company’s Windows Live Web addresses lest it be used by attackers to mount convincing man-in-the-middle ...