Re: xSSL stuff

On 13/06/2014, at 14:23, Christian Pedaschus open...@matt-schwarz.com wrote: One could have said the same about OpenSSH... or not? That doesn't even make any sense. What i was trying to say: if OpenBSD does it right, then (maybe) the others will follow... It would be totally ok if OpenSSH

Re: xSSL stuff

On Fri, Jun 13, 2014 at 05:59:59AM +0200, Christian Pedaschus wrote: On Thu, 12 Jun 2014 23:51:58 -0400 Brad Smith b...@comstyle.com wrote: On 12/06/14 11:43 PM, Christian Pedaschus wrote: wouldn't it be a feature? less warts, less bugs, less features, less compatible, but secure?

Re: xSSL stuff

On 2014-06-13, Christian Pedaschus open...@matt-schwarz.com wrote: wouldn't it be a feature? less warts, less bugs, less features, less compatible, but secure? LibreSSL is trying to improve things for programs written against the OpenSSL API, there are other projects who have implemented new

Re: xSSL stuff

Christian Pedaschus open...@matt-schwarz.com wrote: On Tue, 10 Jun 2014 12:14:46 -0600 Theo de Raadt dera...@cvs.openbsd.org wrote: I was reading stuff in misc@ about OpenSSL broken things. I see people from OpenBSD started LibreSSL project and they are forking OpenSSL and remove the

Re: xSSL stuff

On Tue, 10 Jun 2014 12:14:46 -0600 Theo de Raadt dera...@cvs.openbsd.org wrote: I was reading stuff in misc@ about OpenSSL broken things. I see people from OpenBSD started LibreSSL project and they are forking OpenSSL and remove the bad code. This is past, but I see more and more lesions

Re: xSSL stuff

On 12/06/14 11:43 PM, Christian Pedaschus wrote: On Tue, 10 Jun 2014 12:14:46 -0600 Theo de Raadt dera...@cvs.openbsd.org wrote: I was reading stuff in misc@ about OpenSSL broken things. I see people from OpenBSD started LibreSSL project and they are forking OpenSSL and remove the bad code.

Re: xSSL stuff

On Thu, 12 Jun 2014 23:51:58 -0400 Brad Smith b...@comstyle.com wrote: On 12/06/14 11:43 PM, Christian Pedaschus wrote: wouldn't it be a feature? less warts, less bugs, less features, less compatible, but secure? What good is having a brand new from scratch API when almost nothing uses

Re: xSSL stuff

On 12/06/14 11:59 PM, Christian Pedaschus wrote: On Thu, 12 Jun 2014 23:51:58 -0400 Brad Smith b...@comstyle.com wrote: On 12/06/14 11:43 PM, Christian Pedaschus wrote: wouldn't it be a feature? less warts, less bugs, less features, less compatible, but secure? What good is having a brand

Fw: xSSL stuff

ups, forgot to cc the list... On Thu, 12 Jun 2014 23:59:46 -0400 Brad Smith b...@comstyle.com wrote: On 12/06/14 11:59 PM, Christian Pedaschus wrote: On Thu, 12 Jun 2014 23:51:58 -0400 Brad Smith b...@comstyle.com wrote: On 12/06/14 11:43 PM, Christian Pedaschus wrote: wouldn't it be

xSSL stuff

I was reading stuff in misc@ about OpenSSL broken things. I see people from OpenBSD started LibreSSL project and they are forking OpenSSL and remove the bad code. This is past, but I see more and more lesions are discovered. It may be a stupid question, but having all these, isn't more efficient

Re: xSSL stuff

I was reading stuff in misc@ about OpenSSL broken things. I see people from OpenBSD started LibreSSL project and they are forking OpenSSL and remove the bad code. This is past, but I see more and more lesions are discovered. It may be a stupid question, but having all these, isn't more