Hi all,
what are the possible problems and dangers that may come when using ICS
without version check for SSL libraries (enable $DEFINE
NO_OSSL_VERSION_CHECK in OverbyteIcsSslDefs.inc) ?
The latest SSL libs that are available, are much smaller than the ones
that 0.9.8x that are available
The latest SSL libs that are available, are much smaller than the
ones that 0.9.8x that are available from
http://wiki.overbyte.be/wiki/index.php/ICS_Download.
The size of the SSL DLLs varies depending on whether they contain large C
run time libraries.
The ICS versions are self
Thank you Angus.
Additionally I used UPX and reduced size of libraries - now it's better.
On 3/4/2011 1:53 μμ, Angus Robertson - Magenta Systems Ltd wrote:
The latest SSL libs that are available, are much smaller than the
ones that 0.9.8x that are available from
Additionally I used UPX and reduced size of libraries - now it's
better.
Beware that most such file compressors will eventually be used by virus
and trojan writers, and the signatures added to detect any compressed
files as malware.
I used Petite for many years, but any files using it are
Angus Robertson - Magenta Systems Ltd wrote:
Additionally I used UPX and reduced size of libraries - now it's
better.
Beware that most such file compressors will eventually be used by
virus and trojan writers, and the signatures added to detect any
compressed files as malware.
That's
On 3/4/2011 5:12 μμ, Arno Garrels wrote:
Angus Robertson - Magenta Systems Ltd wrote:
Additionally I used UPX and reduced size of libraries - now it's
better.
Beware that most such file compressors will eventually be used by
virus and trojan writers, and the signatures added to detect any
I wondered why it is so big problem to have a large exe? Installers already
compress well for bandwidth and an average 1TB HDD costs less than $100!
SZ
On Sun, Apr 3, 2011 at 6:15 PM, Dimitris Botsis db...@otenet.gr wrote:
On 3/4/2011 5:12 μμ, Arno Garrels wrote:
Angus Robertson - Magenta
It definitely depends on the project.
Even 100 KBytes less make significant performance to my client-server
auto-update application. Both server has less bytes to send to 100
concurrent connected clients and client can download much faster - there
are still some clients using dial-up or GPRS
It is definitely possible to have issues with UPX but I would say that's a
bit too sensitive heuristics. With better (read: paid) anti-viri programs I
never had any issues - they recognize UPX and unpack it properly and check
for whatever is inside. Only AVG and similar software (free versions)
Also, is there a mechanism (in ICS) to check for invalid root certificates
(regarding the recent SSL issue with bad Comodo certificates)?
--
To unsubscribe or change your settings for TWSocket mailing list
please goto http://lists.elists.org/cgi-bin/mailman/listinfo/twsocket
Visit our website at
Zvone wrote:
Also, is there a mechanism (in ICS) to check for invalid root
certificates (regarding the recent SSL issue with bad Comodo
certificates)?
No there isn't.
It's rather easy to fix TSslContext to include CRLs
(Certificate Revocation Lists) in the certificate
verification process.
Arno Garrels wrote:
Zvone wrote:
Also, is there a mechanism (in ICS) to check for invalid root
certificates (regarding the recent SSL issue with bad Comodo
certificates)?
No there isn't.
It's rather easy to fix TSslContext to include CRLs
(Certificate Revocation Lists) in the certificate
12 matches
Mail list logo
