unsubscribing from list (WAS: Win ssl bug)
Matt Pease wrote: somebody please get me off this list! emailing [EMAIL PROTECTED] does not work Sorry, that's not how it works. YOU subscribed yourself to the list, you were warned that only YOU could unsubscribe later on, and to save the welcome message in case you might forget which address you subscribed with. It's obviously not [EMAIL PROTECTED] or [EMAIL PROTECTED], but only YOU have a chance of guessing it. Look at the headers of the mail you get from the list maybe it's coming via some mail forwarder service you've forgotten about. Nobody on this list has the powers to unsubscribe other people. Those that have are on [EMAIL PROTECTED] If you're a little more helpful than your latest mail maybe they can help you i.e. you provide them with _all_ the email addresses you used about the time you subscribed to this list. But if you know them all you can just as easily unsubscribe the right address yourself. Thanks - Matt -- Med venlig hilsen / Kind regards Hack Kampbjørn
RE: Win ssl bug
Resubmit as attachment since my previous posts wrapped. Applies to 1.8-beta3 . Changelog: * windows\Makefile.src: add gen_sslfunc.c * windows\Makefile.src.bor: ditto. * gen_sslfunc.c: on windows provide ssl crypto random initialization through RAND_screen(); could possibly be not enough for strong ssl communication (see the relevant manual page from the openssl package). Heiko -- -- PREVINET S.p.A.[EMAIL PROTECTED] -- Via Ferretto, 1ph x39-041-5907073 -- I-31021 Mogliano V.to (TV) fax x39-041-5907087 -- ITALY -Original Message- From: Herold Heiko [mailto:[EMAIL PROTECTED]] Sent: Monday, December 03, 2001 5:37 PM To: List wget-bug (E-mail) Subject: RE: Win ssl bug Sorry, I forgot. Changelog: * windows\Makefile.src: add gen_sslfunc.c * windows\Makefile.src.bor: ditto. Heiko -- -- PREVINET S.p.A.[EMAIL PROTECTED] -- Via Ferretto, 1ph x39-041-5907073 -- I-31021 Mogliano V.to (TV) fax x39-041-5907087 -- ITALY 20011204.diff Description: Binary data
Re: Win ssl bug
Herold Heiko [EMAIL PROTECTED] writes: Resubmit as attachment since my previous posts wrapped. Applies to 1.8-beta3 . Thanks. I've applied this, because it's a good stop-gap solution. But I still have some remarks... * We're now using lrand48 on Unix and RAND_screen on Windows. This looks completely wrong because we're not checking for lrand48 at all, and it could be missing. Also, RAND_screen might be useless on Windows if you're running Wget from a batch job. So, two things: + Switch to rand() for a random value. It's less secure, but as Daniel explained, anyone who cares about security will not use an RNG to seed another RNG. This will make Wget compile on Windows and MacOS X. + If possible, use rand() in addition to RAND_screen, in case RAND_screen is useless. This is optional. + Implement a `--random-file' option for people who do care about security, but cannot or don't want to use /dev/random or EGD. I'm not sure if Christian has time for this, so I might take a stab at it before 1.8. One problem is that I'm a cryptography dummy. The problem with bad cryptography is that it looks just like good cryptography and all that.
Re: unsubscribing from list (WAS: Win ssl bug)
What we cannot seem to get through to the thick-headed people is THE AUTOMATED UNSUBSCRIBE PROCEDURE IS BROKEN, AND HAS BEEN FOR A LONG TIME. FOLLOWING THE UNSUBSCRIBE INSTRUCTIONS YOU SO HELPFULLY EXPLAIN IS POINTLESS, BECAUSE THE AUTOMATED UNSUBSCRIBE PROCEDURE IS BROKEN, AND HAS BEEN FOR A LONG TIME. SENDING EMAIL TO [EMAIL PROTECTED] WILL NOT DO THE TRICK BECAUSE THE AUTOMATED UNSUBSCRIBE PROCEDURE IS BROKEN, AND HAS BEEN FOR A LONG TIME. Do you get it now? We are asking for the list admins to fix the list so we can stop bothering people on the list. Do you get it now? -- Jim McMaster mailto:[EMAIL PROTECTED] In message [EMAIL PROTECTED], Hack =?iso-8859-1?Q?Kampbj=F8rn?= said: Matt Pease wrote: somebody please get me off this list! emailing [EMAIL PROTECTED] does not work Sorry, that's not how it works. YOU subscribed yourself to the list, you were warned that only YOU could unsubscribe later on, and to save the welcome message in case you might forget which address you subscribed with. It's obviously not [EMAIL PROTECTED] or [EMAIL PROTECTED], but only YOU have a chance of guessing it. Look at the headers of the mail you get from the list maybe it's coming via some mail forwarder service you've forgotten about. Nobody on this list has the powers to unsubscribe other people. Those that have are on [EMAIL PROTECTED] If you're a little more helpful than your latest mail maybe they can help you i.e. you provide them with _all_ the email addresses you used about the time you subscribed to this list. But if you know them all you can just as easily unsubscribe the right address yourself. Thanks - Matt -- Med venlig hilsen / Kind regards Hack Kampbjørn
Re: unsubscribing from list (WAS: Win ssl bug)
James C. McMaster (Jim) wrote: What we cannot seem to get through to the thick-headed people is THE AUTOMATED UNSUBSCRIBE PROCEDURE IS BROKEN, AND HAS BEEN FOR A LONG TIME. FOLLOWING THE UNSUBSCRIBE INSTRUCTIONS YOU SO HELPFULLY EXPLAIN IS POINTLESS, BECAUSE THE AUTOMATED UNSUBSCRIBE PROCEDURE IS BROKEN, AND HAS BEEN FOR A LONG TIME. SENDING EMAIL TO [EMAIL PROTECTED] WILL NOT DO THE TRICK BECAUSE THE AUTOMATED UNSUBSCRIBE PROCEDURE IS BROKEN, AND HAS BEEN FOR A LONG TIME. Do you get it now? We are asking for the list admins to fix the list so we can stop bothering people on the list. Do you get it now? You're right I hadn't got it. But if the unsubcribe procedure was broken it's fixed now (btw the list admins can be reached at [EMAIL PROTECTED]). I had no problem unsubscribing myself ([EMAIL PROTECTED]) and subscribing a new mail address ([EMAIL PROTECTED]). From my Welcome msg: Please save this message so that you know the address you are subscribed under, in case you later want to unsubscribe or change your subscription address. [...] You can start a subscription for an alternate address, for example [EMAIL PROTECTED], just add a hyphen and your address (with '=' instead of '@') after the command word: [EMAIL PROTECTED] To stop subscription for this address, mail: [EMAIL PROTECTED] In both cases, I'll send a confirmation message to that address. When you receive it, simply reply to it to complete your subscription. If despite following these instructions, you do not get the desired results, please contact my owner at [EMAIL PROTECTED] Please be patient, my owner is a lot slower than I am ;-) And here is the prove that I successfully unsubscribe my previous mail address: Original Message Subject: GOODBYE from [EMAIL PROTECTED] Date: 4 Dec 2001 17:08:53 - From: [EMAIL PROTECTED] To: [EMAIL PROTECTED] Hi! This is the ezmlm program. I'm managing the [EMAIL PROTECTED] mailing list. Acknowledgment: I have removed the address [EMAIL PROTECTED] from the wget mailing list. This address is no longer a subscriber. [...] -- Jim McMaster mailto:[EMAIL PROTECTED] -- Med venlig hilsen / Kind regards Hack Kampbjørn
Win ssl bug
The current CVS 1.8 needs this in order to compile with ssl: diff -urbB wget/windows/Makefile.src wget.wip/windows/Makefile.src --- wget/windows/Makefile.src Thu Nov 29 14:30:24 2001 +++ wget.wip/windows/Makefile.src Mon Dec 3 13:39:58 2001 @@ -55,12 +55,12 @@ SRC = cmpt.c safe-ctype.c connect.c host.c http.c netrc.c ftp-basic.c ftp.c \ ftp-ls.c ftp-opie.c getopt.c hash.c headers.c html-parse.c html-url.c \ progress.c retr.c recur.c res.c url.c cookies.c init.c utils.c main.c \ - version.c mswindows.c fnmatch.c gnu-md5.c rbuf.c log.c $(SSLSRC) + version.c mswindows.c fnmatch.c gen-md5.c gnu-md5.c rbuf.c log.c $(SSLSRC) OBJ = cmpt$o safe-ctype$o connect$o host$o http$o netrc$o ftp-basic$o ftp$o \ ftp-ls$o ftp-opie$o getopt$o hash$o headers$o html-parse$o html-url$o \ progress$o retr$o recur$o res$o url$o cookies$o init$o utils$o main$o \ - version$o mswindows$o fnmatch$o gnu-md5$o rbuf$o log$o $(SSLOBJ) + version$o mswindows$o fnmatch$o gen-md5$o gnu-md5$o rbuf$o log$o $(SSLOBJ) .SUFFIXES: .c .obj diff -urbB wget/windows/Makefile.src.bor wget.wip/windows/Makefile.src.bor --- wget/windows/Makefile.src.bor Thu Nov 29 14:30:24 2001 +++ wget.wip/windows/Makefile.src.bor Mon Dec 3 10:03:37 2001 @@ -39,6 +39,8 @@ html.obj+ host.obj+ headers.obj+ +gen-md5.obj+ +gnu-md5.obj+ getopt.obj+ ftp-opie.obj+ ftp-ls.obj+ However it still won' work due to mising gen_sslfunc.obj : error LNK2001: unresolved external symbol _lrand48 gen_sslfunc.obj : error LNK2001: unresolved external symbol _srand48 In fact looking through the VC++ documentation there doesn't seem to be a rand48() available. Heiko -- -- PREVINET S.p.A.[EMAIL PROTECTED] -- Via Ferretto, 1ph x39-041-5907073 -- I-31021 Mogliano V.to (TV) fax x39-041-5907087 -- ITALY
Re: Win ssl bug
On Mon, 3 Dec 2001, Herold Heiko wrote: However it still won' work due to mising gen_sslfunc.obj : error LNK2001: unresolved external symbol _lrand48 gen_sslfunc.obj : error LNK2001: unresolved external symbol _srand48 In fact looking through the VC++ documentation there doesn't seem to be a rand48() available. You can replace those onse with just plain rand() and srand() or just write your own. No one in their right mind shall ever depend on using that random value anyway for anything that pretends to be secure, as that wouldn't be considered random enough, and thus it is not secure enough to use for seeding SSL. If /dev/urandom or similar isn't present, a serious SSL-using person should provide a good random source himself. If not, there's not much difference in using lrand48() or just plain rand(). They're both software (faked) random generators. For windows users, I recommend using the RAND_screen() function (it is only presen in windows), it uses the current displayed screen as input to the random engine. Of course, I may be completely wrong. -- Daniel Stenberg - http://daniel.haxx.se - +46-705-44 31 77 ech`echo xiun|tr nu oc|sed 'sx\([sx]\)\([xoi]\)xo un\2\1 is xg'`ol
RE: Win ssl bug
Sorry, I forgot. Changelog: * windows\Makefile.src: add gen_sslfunc.c * windows\Makefile.src.bor: ditto. Heiko -- -- PREVINET S.p.A.[EMAIL PROTECTED] -- Via Ferretto, 1ph x39-041-5907073 -- I-31021 Mogliano V.to (TV) fax x39-041-5907087 -- ITALY
