Re: Debian libssl security (Cause???)

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

[view in full thread]

From: Otto Moerbeek <otto@...>

To: Ross Cameron <ross.cameron@...>

Cc: <misc@...>

Subject: Re: Debian libssl security (Cause???)

Date: Friday, May 16, 2008 - 7:41 am

On Fri, May 16, 2008 at 01:31:54PM +0200, Ross Cameron wrote:

> Anyone got any thoughts on what the Debian project has been doing to OpenSSL

quoted text

> to have caused this in the first place?

yes, read the stuff posted earlier, it contains all relevant links. To
summarize, to silence a bogus valgrind warning, almost all seeding of
the PRNG used by openssl was removed.

-Otto

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

Messages in current thread:

Debian libssl security (Cause???), Ross Cameron, (Fri May 16, 7:31 am)

Re: Debian libssl security (Cause???), Otto Moerbeek, (Fri May 16, 7:41 am)

Re: Debian libssl security (Cause???), Ross Cameron, (Fri May 16, 8:30 am)

Re: Debian libssl security (Cause???), Ted Unangst, (Fri May 16, 4:02 pm)

Re: Debian libssl security (Cause???), Otto Moerbeek, (Sat May 17, 2:36 am)

Re: Debian libssl security (Cause???), Tim Post, (Sat May 17, 3:12 am)

Re: Debian libssl security (Cause???), Travers Buda, (Fri May 16, 2:33 pm)

Re: Debian libssl security (Cause???), mcb, inc., (Fri May 16, 3:06 pm)


linux-kernel:
Pierre Ossman	Re: [RFC][PATCH] cpuidle: avoid singing capacitors
Greg KH	[GIT PATCH] driver core patches against 2.6.24
Greg KH	Re: Announce: Linux-next (Or Andrew's dream :-))
Rene Herman	2.6.26, PAT and AMD family 6
git:

linux-netdev:
Jesper Krogh	Re: NIU - Sun Neptune 10g - Transmit timed out reset (2.6.24)
Gerrit Renker	[PATCH 27/37] dccp: Integration of dynamic feature activation - part 2 (server side)
Arjan van de Ven	Re: [GIT]: Networking
Radu Rendec	htb parallelism on multi-core platforms
openbsd-misc:

Re: Debian libssl security (Cause???)

Online users