Page 1 of 1

Taco Bell breaks SSL

Posted: Tue Jun 16, 2015 6:05 pm
by Chilly8
Somehow Taco Bell has found a way to break SSL, at least what is used by the SSL VPNs on SoftEther. Before possibly going on a road trip next week, I was testing OpenVPN on port 443, as I will periodically need to check the server for my online radio station, and MetroPCS/TMobile blocks LT2P VPNs.

Testing this on the TacoBell wifi for customers, I found they let me connect to my server, but if I try to access any site that they have filtered, it will still be blocked, even going through my port 443 SSL VPN. Somehow, Taco Bell found a way to crack OpenVPN's SSL.

If Taco Bell can break SSL, anyone can. How long until some more nefarious hackers discover they can do that, and threaten things like credit card numbers and the like.

So, do be careful when using SSL mode on port 443, your connection can be cracked and sniffed. If it is not blocked, use the LT2P/IPSec connection on any server, as that has not yet been cracked, than I am aware of, and is probably a lot more secure than OpenVPN's SSL on port 443.

SSL can be cracked and sniffed.

Re: Taco Bell breaks SSL

Posted: Tue May 31, 2016 1:25 pm
by yume
OpenVPN is very secure protocol, the reason why you can't open blocked site is probably because you haven't changed DNS, and your site is blocked by DNS, change DNS to 8.8.8.8
OpenVPN doesn't change DNS by default