Re: [tor-bugs] #19983 [Core Tor/Tor]: Is openssl 1.1.0's "secure heap" feature useful for us?

2018-08-18 Thread Tor Bug Tracker & Wiki 
#19983: Is openssl 1.1.0's "secure heap" feature useful for us?
-+-
 Reporter:  nickm|  Owner:  (none)
 Type:  enhancement  | Status:  new
 Priority:  Medium   |  Milestone:  Tor:
 |  unspecified
Component:  Core Tor/Tor |Version:
 Severity:  Normal   | Resolution:
 Keywords:  tls openssl hardening security tor-  |  Actual Points:
  relay tor-client   |
Parent ID:   | Points:
 Reviewer:   |Sponsor:
-+-
Changes (by traumschule):

 * keywords:  openssl hardening security tor-relay tor-client => tls openssl
 hardening security tor-relay tor-client


--
Ticket URL: 
Tor Bug Tracker & Wiki 
The Tor Project: anonymity online
___
tor-bugs mailing list
tor-bugs@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Re: [tor-bugs] #19983 [Core Tor/Tor]: Is openssl 1.1.0's "secure heap" feature useful for us?

2017-06-30 Thread Tor Bug Tracker & Wiki 
#19983: Is openssl 1.1.0's "secure heap" feature useful for us?
-+-
 Reporter:  nickm|  Owner:
 Type:  enhancement  | Status:  new
 Priority:  Medium   |  Milestone:  Tor:
 |  unspecified
Component:  Core Tor/Tor |Version:
 Severity:  Normal   | Resolution:
 Keywords:  openssl hardening security tor-  |  Actual Points:
  relay tor-client   |
Parent ID:   | Points:
 Reviewer:   |Sponsor:
-+-
Changes (by nickm):

 * keywords:  openssl110 => openssl hardening security tor-relay tor-client
 * type:  defect => enhancement


--
Ticket URL: 
Tor Bug Tracker & Wiki 
The Tor Project: anonymity online
___
tor-bugs mailing list
tor-bugs@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Re: [tor-bugs] #19983 [Core Tor/Tor]: Is openssl 1.1.0's "secure heap" feature useful for us?

2016-08-28 Thread Tor Bug Tracker & Wiki 
#19983: Is openssl 1.1.0's "secure heap" feature useful for us?
--+--
 Reporter:  nickm |  Owner:
 Type:  defect| Status:  new
 Priority:  Medium|  Milestone:  Tor: 0.2.???
Component:  Core Tor/Tor  |Version:
 Severity:  Normal| Resolution:
 Keywords:  openssl110|  Actual Points:
Parent ID:| Points:
 Reviewer:|Sponsor:
--+--

Comment (by teor):

 Sounds like a good idea - but we should make sure we turn it on for all
 private keys, not just the automatic RSA key protection.
 http://blog.nullspace.io/akamai-ssl-patch.html

--
Ticket URL: 
Tor Bug Tracker & Wiki 
The Tor Project: anonymity online
___
tor-bugs mailing list
tor-bugs@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

[tor-bugs] #19983 [Core Tor/Tor]: Is openssl 1.1.0's "secure heap" feature useful for us?

2016-08-25 Thread Tor Bug Tracker & Wiki 
#19983: Is openssl 1.1.0's "secure heap" feature useful for us?
--+--
 Reporter:  nickm |  Owner:
 Type:  defect| Status:  new
 Priority:  Medium|  Milestone:  Tor: 0.2.???
Component:  Core Tor/Tor  |Version:
 Severity:  Normal|   Keywords:  openssl110
Actual Points:|  Parent ID:
   Points:|   Reviewer:
  Sponsor:|
--+--
 Found out about this in the 1.1.0 changelog. Maybe it could be something
 to take advantage of.

--
Ticket URL: 
Tor Bug Tracker & Wiki 
The Tor Project: anonymity online
___
tor-bugs mailing list
tor-bugs@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs