> Hej Rickard,
>
> I think we met after the EPP presentations?
Hmm... Sorry, can't recall that I was at the EPP presentations.
> I saw it, and it is still in my inbox (along with thousands
> of other open source messages that I could and should attend
> to if I had time) but because you didn't
Hej Rickard,
I think we met after the EPP presentations?
Andreas Jellinghaus wrote:
> > > Thanks to Miquel Comas Martí, who found and fixed this bug
> > > and contacted us on May 7th, 2009.
> >
> > Well... It was actually noted by me on Monday 27 April in the
> > thread:
> > "[opensc-devel] Keyg
Am Freitag 08 Mai 2009 08:53:35 schrieb Rickard Bondesson:
> > Thanks to Miquel Comas Martí, who found and fixed this bug
> > and contacted us on May 7th, 2009.
>
> Well... It was actually noted by me on Monday 27 April in the thread:
> "[opensc-devel] Keygen problem in pkcs11-tool", but no one res
> Thanks to Miquel Comas Martí, who found and fixed this bug
> and contacted us on May 7th, 2009.
Well... It was actually noted by me on Monday 27 April in the thread:
"[opensc-devel] Keygen problem in pkcs11-tool", but no one responded to that.
It seems like the opensc-devel mailing list is no
OpenSC 0.11.8 was released yesterday with a security update.
The security problem in short: you need a combination of
1.) a tool that startes a key generation with public exponent set to 1
(an invalid value that causes an insecure rsa key)
2.) a PKCS#11 module that accepts that this public exp
