Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Vulnerabilities / Threats

10/25/2011
04:12 PM
Connect Directly
Google+
Twitter
RSS
E-Mail
50%
50%

Tool Lets Single Laptop Take Down An SSL Server

Yet another strike against SSL security

SSL is in the hot seat again: A new, free tool is now circulating that can take down an HTTPS Web server in a denial-of-service attack using a single laptop via a DSL connection.

Researchers with a hacker group called The Hackers Choice (THC) yesterday released the so-called THC-SSL-DOS tool that abuses the SSL renegotiation feature, which basically reperforms the encryption handshake.

The tool lets an attacker use a single connection to relentlessly perform the renegotiation with the SSL server, eventually overwhelming it. "It's a constant renegotiation. Instead of forming new connections over and over again ... it increases the overhead of the server," says Tyler Reguly, manager of security research and development with nCircle.

It all comes down to an SSL feature -- SSL renegotiation -- that isn't typically needed for Web servers. "Unless you wanted to change the encryption level, it's not a necessity. Some SSL VPNs make extensive use of it, but it's not needed in the Web browsing world," Reguly says.

The hackers who wrote the tool recommend disabling SSL renegotiation. But even that won't completely prevent such a denial-of-service attack. "It still works if SSL Renegotiation is not supported but requires some modifications and more bots before an effect can be seen," the THC hackers said in a statement.

For the tool to take down server farms with SSL load balancing, it requires using about 20 "average size" laptops and 120 Kbps of traffic, they said.

The new tool is reminiscent of the Slowloris attack tool that keeps connections open by sending partial HTTP requests and sends headers at regular intervals to prevent the sockets from closing, and OWASP's Slow HTTP Post tool. There's also the open-source slowhttptest tool that checks a server's vulnerability to a Slowloris-type attack.

nCircle's Reguly was initially skeptical of the attack, but downloaded the tool and gave it a spin. Much to his surprise, it worked well -- too well. "It definitely took down the server I tested it on. My laptop versus the HTTPS server was a success," he says. "It was kind of scary."

SSL has been under heavy scrutiny during the past couple of years for its vulnerability to man-in-the-middle attacks and for the high volume of SSL-based websites that are improperly configured. Some 80 percent, for example, are vulnerable to a Firesheep or similar attack, according to data from SSL Labs, Qualys' community project. And 70 percent of SSL servers handle credential login in plain text, while 55 percent submit passwords in plain text.

On top of that, there are this year's attacks of certificate authorities Comodo and DigiNotar, for instance. "We warned in 2002 about giving hundreds of commercial companies (so-called Certification Authorities) a master key to ALL SSL traffic," said Fred Mauer, a senior cryptographer at THC, in a post. "Only a real genius can come up with such an idea. And last but not least the immense complexity of SSL Renegotiation strikes again in 2011 with the release of THC-SSL-DOS. It’s time for a new security model that adequately protects the citizens."

THC also dismissed the idea of renegotiating encryption. "Renegotiating Key material is a stupid idea from a cryptography standpoint. If you are not happy with the key material negotiated at the start of the session then the session should be re-established and not re-negotiated," the group said.

The tool is available here for download.

Have a comment on this story? Please click "Add Your Comment" below. If you'd like to contact Dark Reading's editors directly, send us a message.

Kelly Jackson Higgins is the Executive Editor of Dark Reading. She is an award-winning veteran technology and business journalist with more than two decades of experience in reporting and editing for various publications, including Network Computing, Secure Enterprise ... View Full Bio

 

Recommended Reading:

Comment  | 
Print  | 
More Insights
Comments
Oldest First  |  Newest First  |  Threaded View
COVID-19: Latest Security News & Commentary
Dark Reading Staff 8/3/2020
Pen Testers Who Got Arrested Doing Their Jobs Tell All
Kelly Jackson Higgins, Executive Editor at Dark Reading,  8/5/2020
New 'Nanodegree' Program Provides Hands-On Cybersecurity Training
Nicole Ferraro, Contributing Writer,  8/3/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: This comment is waiting for review by our moderators.
Current Issue
Special Report: Computing's New Normal, a Dark Reading Perspective
This special report examines how IT security organizations have adapted to the "new normal" of computing and what the long-term effects will be. Read it and get a unique set of perspectives on issues ranging from new threats & vulnerabilities as a result of remote working to how enterprise security strategy will be affected long term.
Flash Poll
The Changing Face of Threat Intelligence
The Changing Face of Threat Intelligence
This special report takes a look at how enterprises are using threat intelligence, as well as emerging best practices for integrating threat intel into security operations and incident response. Download it today!
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-11937
PUBLISHED: 2020-08-06
In whoopsie, parse_report() from whoopsie.c allows a local attacker to cause a denial of service via a crafted file. The DoS is caused by resource exhaustion due to a memory leak. Fixed in 0.2.52.5ubuntu0.5, 0.2.62ubuntu0.5 and 0.2.69ubuntu0.1.
CVE-2020-15114
PUBLISHED: 2020-08-06
In etcd before versions 3.3.23 and 3.4.10, the etcd gateway is a simple TCP proxy to allow for basic service discovery and access. However, it is possible to include the gateway address as an endpoint. This results in a denial of service, since the endpoint can become stuck in a loop of requesting i...
CVE-2020-15136
PUBLISHED: 2020-08-06
In ectd before versions 3.4.10 and 3.3.23, gateway TLS authentication is only applied to endpoints detected in DNS SRV records. When starting a gateway, TLS authentication will only be attempted on endpoints identified in DNS SRV records for a given domain, which occurs in the discoverEndpoints func...
CVE-2020-15701
PUBLISHED: 2020-08-06
An unhandled exception in check_ignored() in apport/report.py can be exploited by a local attacker to cause a denial of service. If the mtime attribute is a string value in apport-ignore.xml, it will trigger an unhandled exception, resulting in a crash. Fixed in 2.20.1-0ubuntu2.24, 2.20.9-0ubuntu7.1...
CVE-2020-15702
PUBLISHED: 2020-08-06
TOCTOU Race Condition vulnerability in apport allows a local attacker to escalate privileges and execute arbitrary code. An attacker may exit the crashed process and exploit PID recycling to spawn a root process with the same PID as the crashed process, which can then be used to escalate privileges....