Date: Wed, 31 Jul 2002 01:10:12 +0200 From: Michael Nottebrock <michaelnottebrock@gmx.net> To: Nielsen <nielsen@memberwebs.com> Cc: freebsd-security@FreeBSD.ORG Subject: Re: OpenSSH not using libssl? Message-ID: <3D471CD4.2010607@gmx.net> References: <121122473609.20020730210032@buz.ch> <3D46E7ED.1040006@gmx.net> <20020730222715.80CCA43C361@mail.npubs.com>
next in thread | previous in thread | raw e-mail | index | archive | help
[-- Attachment #1 --] Nielsen wrote: > I think libcrypto has the ASN.1 bug. > > Nate > > ----- Original Message ----- > >>It uses libcrypto, but it shouldn't be vulnerable. I meant that openssh isn't vulnerable (since, afair, it doesn't use the ASN.1 parser). Regards, -- Michael Nottebrock "The circumstance ends uglily in the cruel result." - Babelfish [-- Attachment #2 --] -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.7 (FreeBSD) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD4DBQE9RxzUXhc68WspdLARAuO4AJjGUIGKZWeMkuTX9Lg9cMeQbC3oAJ0dVlN3 QKPwTBUbAqoOU71LY8NEVQ== =Am1T -----END PGP SIGNATURE-----
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3D471CD4.2010607>