Re: [SECURITY] [DSA 1571-1] New openssl packages fix predictable random number generator

To: debian-security@lists.debian.org
Subject: Re: [SECURITY] [DSA 1571-1] New openssl packages fix predictable random number generator
From: Sam Morris <sam@robots.org.uk>
Date: Tue, 13 May 2008 19:38:27 +0000 (UTC)
Message-id: <[🔎] pan.2008.05.13.19.38.27@robots.org.uk>
References: <87od7az9v4.fsf@mid.deneb.enyo.de> <[🔎] m3skwmatou.fsf@neo.luffy.cx>

On Tue, 13 May 2008 21:29:53 +0200, Vincent Bernat wrote:

>  - It seems  that firefox does not handle  CRL unless manually imported,
>    correct? This  means that in  most cases already  issued certificates
>    are still  vulnerable even revoked. A  quick look seems  to show that
>    most software do not handle CRL at all.

Yes, x509 is fundamentally broken in the first place.

-- 
Sam Morris
http://robots.org.uk/
 
PGP key id 1024D/5EA01078
3412 EA18 1277 354B 991B  C869 B219 7FDB 5EA0 1078

Reply to:

Follow-Ups:
- Re: [SECURITY] [DSA 1571-1] New openssl packages fix predictable random number generator
  - From: paddy@panici.net

References:
- Re: [SECURITY] [DSA 1571-1] New openssl packages fix predictable random number generator
  - From: Vincent Bernat <bernat@luffy.cx>

Prev by Date: Re: [SECURITY] [DSA 1571-1] New openssl packages fix predictable random number generator
Next by Date: Re: [SECURITY] [DSA 1571-1] New openssl packages fix predictable random number generator
Previous by thread: Re: [SECURITY] [DSA 1571-1] New openssl packages fix predictable random number generator
Next by thread: Re: [SECURITY] [DSA 1571-1] New openssl packages fix predictable random number generator
Index(es):
- Date
- Thread