another new openssl vulnerability (CVE-2016-0701)

Here wizards, magicians, sorcerers and everybody can rest a bit and talk about anything they like.

Just remember to respect the rules.

another new openssl vulnerability (CVE-2016-0701)

Postby jiml8 » Feb 1st, '16, 23:12

http://arstechnica.com/security/2016/01 ... s-traffic/

I do hope the patch will be along soon...
Last edited by doktor5000 on Feb 2nd, '16, 11:13, edited 1 time in total.
Reason: adjusted thread title
jiml8
 
Posts: 1253
Joined: Jul 7th, '13, 18:09

Re: another new openssl vulnerability (CVE-2016-0701)

Postby doktor5000 » Feb 2nd, '16, 11:15

update candidates for this ( CVE-2016-0701 ) and the previous one, CVE-2015-3197 are currently being validated via https://bugs.mageia.org/show_bug.cgi?id=17640
Cauldron is not for the faint of heart!
Caution: Hot, bubbling magic inside. May explode or cook your kittens!
----
Disclaimer: Beware of allergic reactions in answer to unconstructive complaint-type posts
User avatar
doktor5000
 
Posts: 17630
Joined: Jun 4th, '11, 10:10
Location: Leipzig, Germany

Re: another new openssl vulnerability (CVE-2016-0701)

Postby plspls » Aug 16th, '16, 14:03

ahahahah openssl is very bad for security

better to use no ssl at all than openssl

openssl is security nightmare all expert say this

I recommend no ssl

openssh is ok
plspls
 
Posts: 95
Joined: Aug 14th, '16, 11:38

Re: another new openssl vulnerability (CVE-2016-0701)

Postby maat » Aug 16th, '16, 16:36

plspls wrote:ahahahah openssl is very bad for security

better to use no ssl at all than openssl

openssl is security nightmare all expert say this

I recommend no ssl

openssh is ok


I'd be happy to learn about how you protect HTTP traffic with SSH instead of SSL in browsers :D

More seriously: of course there is always a mean for technical people to tunnel HTTP into whatever but if you want to teach Mr Average how to deal with SOCKS proxies on a large scale...
maat
 
Posts: 307
Joined: Feb 13th, '11, 00:23


Return to The Wizards Lair

Who is online

Users browsing this forum: No registered users and 1 guest

cron