tech-security archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

Re: SSL renegociation vulnerability

Emmanuel Dreyfus wrote:

A question about the latest SSL vulnerability:

I don't have an answer to your question, but for the sake of the list archives, it should be pointed out that the ASF distributed work-around patch has been imported into pkgsrc/www/apache22 about 7 weeks ago by Matthias Scheler:

As far as getting OpenSSL 0.9.8l MITM-related changes backported, I'll defer.


Home | Main Index | Thread Index | Old Index