|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: SSL renegociation vulnerability
From: Brian A. Seklecki (CFI NOC) (seklecki
noc.cfi.pgh.pa.us)
Date: Wed Dec 02 2009 - 17:07:34 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Emmanuel Dreyfus wrote:
> Hello
>
> A question about the latest SSL vulnerability:
> http://extendedsubset.com/?p=8
I don't have an answer to your question, but for the sake of the list
archives, it should be pointed out that the ASF distributed work-around
patch has been imported into pkgsrc/www/apache22 about 7 weeks ago by
Matthias Scheler:
http://pkgsrc.se/files.php?messageId=20091004122135.3083A175DAcvs.netbsd.org
As far as getting OpenSSL 0.9.8l MITM-related changes backported, I'll
defer.
~BAS
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]