“A group of key IT security specialists have uncovered, what
they say is, a major security failing with modern so-called secure
Web server software from Microsoft…Netscape…and
Apache.“
“Until now, they say, it was believed that security information
called “private keys” could not be found in the memory systems of a
server and compromised….”
“The researchers’ discovery introduces the possibility that any
user with the capability to execute software on a company’s
e-commerce server could quickly locate cryptographic keys that
would allow access to secure information ranging from PC data to
credit card numbers.”