> > When OpenSSL inserts an empty fragment, it fragments a single message > into multiple parts, the first of which happens to be empty. I > concede that this might appear pointless as long as one doesn't know > about the CBC security issues, but nothing in the specification speaks > against it. (And, of course, security considerations speak for it.) > > > -- > Bodo Möller <[EMAIL PROTECTED]>
Thanks Bodo. This is exactly the response I needed. Jeffrey Altman * Sr.Software Designer Kermit 95 2.0 GUI available now!!! The Kermit Project @ Columbia University SSH, Secure Telnet, Secure FTP, HTTP http://www.kermit-project.org/ Secured with MIT Kerberos, SRP, and [EMAIL PROTECTED] OpenSSL. ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]