Re: SSL renegociation vulnerability

To: bseklecki%noc.cfi.pgh.pa.us@localhost
Subject: Re: SSL renegociation vulnerability
From: manu%netbsd.org@localhost (Emmanuel Dreyfus)
Date: Thu, 3 Dec 2009 04:16:32 +0100

Brian A. Seklecki (CFI NOC) <seklecki%noc.cfi.pgh.pa.us@localhost> wrote:

> I don't have an answer to your question, but for the sake of the list
> archives, it should be pointed out that the ASF distributed work-around
> patch has been imported into pkgsrc/www/apache22 about 7 weeks ago by
> Matthias Scheler:
> 
> http://pkgsrc.se/files.php?messageId=20091004122135.3083A175DA%cvs.netbsd.org@localhost

This fix is just about mod_proxy_ftp, not the whole SSL handshake bug,
isn't it?

-- 
Emmanuel Dreyfus
http://hcpnet.free.fr/pubz
manu%netbsd.org@localhost

Follow-Ups:
- Re: SSL renegociation vulnerability
  - From: Brian Seklecki

References:
- Re: SSL renegociation vulnerability
  - From: Brian A. Seklecki (CFI NOC)

Prev by Date: Re: SSL renegociation vulnerability
Next by Date: Re: SSL renegociation vulnerability
Previous by Thread: Re: SSL renegociation vulnerability
Next by Thread: Re: SSL renegociation vulnerability
Indexes:

Home | Main Index | Thread Index | Old Index