On Thu, 17 Sep 2015 11:20:02 -0400 Richard Barnes <[email protected]> wrote:
> I realize there are some engineering ways this update could be made > better, but before we start optimizing, I would like to get feedback > on whether this change fixes the security issues that have been > raised. This change looks good to me, security-wise. I'm pretty confident it fully fixes the vulnerability and doesn't introduce any new flaws (unlike the mitigation, which made me rather uneasy). I do think there are some simplifications/optimizations that could be made, but I'll raise those later. -- Andrew _______________________________________________ Acme mailing list [email protected] https://www.ietf.org/mailman/listinfo/acme
