Another Dutch CA Hacked 152
An anonymous reader writes "After the fiasco involving DigiNotar, another Dutch CA (Gemnet, a daughter of KPN-Telecom) has been hacked and databases were accessed, webwereld.nl reports (Dutch original). The hack was possible because the website was managed using PHP-MyAdmin, and this application allowed database access without a password. The site has been shut down and security checks were ordered."
jawdrop (Score:5, Interesting)
At what point does this become "criminal negligence"?
And you'd expect there would be some sort of periodic audit process in place for anyone that manages a root certificate? hippa-style something or other? Or will they just set up any idiots with a CA that have good credit?
Re:jawdrop (Score:4, Interesting)
After all, it isn't stealing to pick money off the ground, it isn't hacking to visit public web data.
Comment removed (Score:5, Interesting)
Ca subject name? (Score:4, Interesting)
So the first question I expected t.f.a. to answer:
What is the subject name of this Ca so I can remove it from my list of "trusted" Cas?