On Tue, 15 Apr 2014 17:06:13 +0300 Georgi Guninski <[email protected]> wrote:
> openssl accepts DSA (and probably DH) keys with > g=1 (or g= -1). Both are extremely weak, in > practice plaintext. openssl also accepts 15 as a prime for DH. I recently looked at this: http://blog.hboeck.de/archives/841-Diffie-Hellman-and-TLS-with-nonsense-parameters.html -- Hanno Böck http://hboeck.de/ mail/jabber: [email protected] GPG: BBB51E42
signature.asc
Description: PGP signature
_______________________________________________ Sent through the Full Disclosure mailing list http://nmap.org/mailman/listinfo/fulldisclosure Web Archives & RSS: http://seclists.org/fulldisclosure/
