MITM in SSL/TLS
Folks, I've a doubt about the man-in-the-middle attack concerning web browser SSL/TLS connections... If only the server is authenticated using X509, the connection is vulnerable to MITM right? But if both client and servers have certificates? Then there is no such vulnerability?
thanx
|