[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-security] OpenSSL Advisory?

Subject: Re: [cobalt-security] OpenSSL Advisory?
From: Charlie Clemmer <cclemmer@xxxxxxxxxxxxxxxxxx>
Date: Wed, 01 Oct 2003 00:10:26 -0500
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

At 06:30 AM 10/1/2003 +0200, Michael Stauber wrote:

Well, OpenSSL updates are nasty as god-knows-what is compiled against it.
Either statically or dynamically.

Man ... after that detailed a write up, I hope *I* didn't just cause you tomiss some sleep. ;)

Yeah, I knew there where lots of things linked against it, but I honestlydidn't realize it was quite that much. I'm not real excited about the DoSpotential, but it's better than giving someone access ... and worst case, Ican just shut down https access to sites that don't need it if a DoS attackstarts.


Thanks for the detailed response!



--
This message has been scanned for viruses and dangerous content by
MailScanner, and is believed to be clean.

References:
- [cobalt-security] OpenSSL Advisory?
  - From: Charlie Clemmer
- Re: [cobalt-security] OpenSSL Advisory?
  - From: Michael Stauber

Prev by Date: Re: [cobalt-security] OpenSSL Advisory?
Next by Date: Re: [cobalt-security] OpenSSL Advisory?
Previous by thread: Re: [cobalt-security] OpenSSL Advisory?
Next by thread: [cobalt-security] Getting this after a clean / fresh re-install

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index