20151113xiaodaige
moncler jackets
supra shoes
uggs outlet
louis vuitton handbags outlet
nfl jersey wholesale
hermes birkin bag
hermes outlet store
babyliss flat iron
giuseppe zanotti outlet
barbour jackets
coach outlet store
ysl outlet
tiffany and co
coach handbags outlet
pandora outlet
moncler
UNIX philosophy = KISS
Thanks for those links.
It seems to me that this is all a big mess, and only time will solve
anything... people are trying to do things in one way and another, but
computers are so complicated that you always end up fucking up somehow...
Maybe the LibreSSL is a good approach, but it does
I know this has been subject of many debates since the news came out, and
while the situation might not be as bad as it seems, I do remember without a
doubt that Jacob Applebaum (one of the journalists that is helping releasing
the NSA documents and therefore has access to most information)
Being stripped down could be a good thing... since that would make the code
easier to maintain and audit when necessary.
Not that I think the GNU/Linux distros out there will start using it, BSD
distros might.
I like the idea of KISS software :)
Only a few days old, OpenSSL fork LibreSSL is declared “unsafe for Linux”
I'm not an expert but testing a software program, before is release is
essential in my books. Openssl nor libressl has not been tested sufficiently
to me. So Ill stay away from it!
Follow the links and read the
You're thinking about this I reckon:
https://media.ccc.de/browse/congress/2014/31c3_-_6258_-_en_-_saal_1_-_201412282030_-_reconstructing_narratives_-_jacob_-_laura_poitras/download.html
He does say that there have been SSH sessions cracked, but that doesn't mean
SSH in itself is insecure every
gnuser:
What are your thoughts on this, should we start using LibreSSL, after
all the s*** that has been going on with OpenSSL?
I don't know if the APIs for LibreSSL are the same for OpenSSL but
modifying programs to use the former could be a big job and ideally
would be done by upstream
I am in a hurry right now, sorry for the short reply.
A quick websearch revealed these links:
https://www.techdirt.com/articles/20141229/06331329532/how-nsa-works-hard-to-break-encryption-any-way-it-can.shtml
I didn't know of this, but apparently OpenSSL has been forked by the OpenBSD
team into LibreSSL. Has been so for some time now, I just didn't know of it
yet. Their goal is apparently to make it more secure by making the code
easier to review by everyone. Modernizing the code, they say. What
Also, found this link
http://www.openbsd.org/papers/eurobsdcon2014-libressl.html
Well, you're asking some very good Questions !
Although I don't know answers to them...I wasn't aware that OpenSSH keys may
be broken,
but then Jacob Applebaum is somebody I would trust.
As to Theo de Raadt not providing the results of an independent review - that
really
does surprise me
most definately !
The OpenBSD team are well known for transparent auditing of their source
code,
also for the way they integrate security into an Operating System.
I'd say LibreSSL would be as welcome as OpenSSH (also by the OpenBSD team).
I am speaking from memory here but I think Jacob Appelbaum said in a speech
that SSH keys were broken and the NSA had made it not secure... Does that
apply to OpenSSH?
As for the transparent audit, I think (again from memory) that Theo de Radt
(the main guy behind OpenBSD) had refused to
sounds like a rely good project
15 matches
Mail list logo