[dundee] 'Severe' OpenSSL vuln busts public key crypto

Robert Ladyman it at file-away.co.uk
Fri Mar 5 14:04:36 UTC 2010


Blimey, that is a severe password-change policy.

> It seems massively unfeasible; as an alternative I'd be inclined to
> kidnap someones family until they gave me the key and the pass phrase.
> 
> Kris
> 
> On 4 March 2010 22:21, Arron M Finnon <finux at finux.co.uk> wrote:
> > Not too practical in the real world, but you never know it could lead to
> > more things
> >
> > http://www.theregister.co.uk/2010/03/04/severe_openssl_vulnerability/
> >
> > Computer scientists say they've discovered a "severe vulnerability" in
> > the world's most widely used software encryption package that allows
> > them to retrieve a machine's secret cryptographic key.
> >
> >
> > --
> > Arron "finux" Finnon
> >
> > Finux.co.uk/blog - Twitter.com/f1nux - facebook.com/finux
> >
> > Podcasting for HPR and TRACsec, shows can be found at;
> > http://hackerpublicradio.org/correspondents.php?hostid=85
> > http://www.tracsec.com
> >
> >
> >
> >
> >
> > _______________________________________________
> > dundee GNU/Linux Users Group mailing list
> > dundee at lists.lug.org.uk  http://dundeelug.org.uk
> > https://mailman.lug.org.uk/mailman/listinfo/dundee
> > Chat on IRC, #tlug on irc.lug.org.uk
> 
> _______________________________________________
> dundee GNU/Linux Users Group mailing list
> dundee at lists.lug.org.uk  http://dundeelug.org.uk
> https://mailman.lug.org.uk/mailman/listinfo/dundee
> Chat on IRC, #tlug on irc.lug.org.uk
> 

-- 

Robert Ladyman
File-Away Limited, 32 Church Street, Newtyle
Perthshire, PH12 8TZ SCOTLAND
Registered in Scotland, Company Number SC222086
Tel: +44 (0) 1828 898 158
Mobile: +44 (0) 7732 771 649
http://www.file-away.co.uk




More information about the dundee mailing list