Samuel Lavitt wrote:
I am wondering how I could determine, with only access to the compiled binary, if this version has any missing security fixes
The "worst" vulnerabilities (and your time might be valuable, so prioritization might be important) have published exploits available. Black hat black box testing, IOW. My profession prevents me from directly pointing you to such tools, but a modest amount of effort can lead you to them. Don't put too much faith in version strings. - M ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
