DaemonForums  

Go Back   DaemonForums > DaemonForums.org > News

News News regarding BSD and related.

 
 
Thread Tools Display Modes
Prev Previous Post   Next Post Next
  #1   (View Single Post)  
Old 15th April 2014
J65nko J65nko is online now
Administrator
 
Join Date: May 2008
Location: Budel - the Netherlands
Posts: 3,199
Thanked 182 Times in 149 Posts
Default Please Put OpenSSL Out of Its Misery

From http://queue.acm.org/detail.cfm?id=2602816 an analysis by FreeBSD and Varnish developer Poul-Henning Kamp:

Quote:
OpenSSL must die, for it will never get any better.

Poul-Henning Kamp

The OpenSSL software package is around 300,000 lines of code, which means there are probably around 299 bugs still there, now that the Heartbleed bug — which allowed pretty much anybody to retrieve internal state to which they should normally not have access — has been fixed.
__________________
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump
Reply With Quote
 

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
OpenSSL challenge Ooonak OpenBSD Security 1 9th July 2012 02:47 PM
OpenSSL fixes DoS bug in recent bug fix J65nko News 0 20th January 2012 12:02 AM
Security Six security flaws fixed in OpenSSL J65nko News 0 6th January 2012 06:17 PM
New version of OpenSSL fixes two vulnerabilities J65nko News 0 9th December 2010 02:56 AM
OpenSSL updates fix vulnerabilities J65nko News 0 4th June 2010 12:48 PM


All times are GMT. The time now is 12:09 AM.


Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick