From owner-freebsd-security@FreeBSD.ORG Fri Apr 1 19:23:22 2011 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 9AA5A106564A for ; Fri, 1 Apr 2011 19:23:22 +0000 (UTC) (envelope-from perrin@apotheon.com) Received: from oproxy3-pub.bluehost.com (oproxy3-pub.bluehost.com [69.89.21.8]) by mx1.freebsd.org (Postfix) with SMTP id 60EFF8FC13 for ; Fri, 1 Apr 2011 19:23:22 +0000 (UTC) Received: (qmail 10451 invoked by uid 0); 1 Apr 2011 19:23:18 -0000 Received: from unknown (HELO box543.bluehost.com) (74.220.219.143) by oproxy3.bluehost.com with SMTP; 1 Apr 2011 19:23:18 -0000 DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=default; d=apotheon.com; h=Date:From:To:Subject:Message-ID:Mail-Followup-To:References:Mime-Version:Content-Type:Content-Disposition:In-Reply-To:User-Agent:X-Identified-User; b=mrVmjsKZaru5+xKsP6pnFNm2QTEG0t2hTxRN+iRV9bYSyD+M14prTGSG96XxsiIv6fzAioHZBVvPhzVAzbnLSh2CyTkC5yZQCwGzbM/d9kG2RQFh1YYK18C+LBhmnK8E; Received: from c-24-8-180-234.hsd1.co.comcast.net ([24.8.180.234] helo=kukaburra.hydra) by box543.bluehost.com with esmtpsa (TLSv1:AES256-SHA:256) (Exim 4.69) (envelope-from ) id 1Q5jwD-0007oI-93 for freebsd-security@freebsd.org; Fri, 01 Apr 2011 13:23:18 -0600 Received: by kukaburra.hydra (sSMTP sendmail emulation); Fri, 01 Apr 2011 13:10:57 -0600 Date: Fri, 1 Apr 2011 13:10:57 -0600 From: Chad Perrin To: freebsd-security Message-ID: <20110401191057.GB86039@guilt.hydra> Mail-Followup-To: freebsd-security References: <20110401153300.GA85392@guilt.hydra> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="K8nIJk4ghYZn606h" Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.4.2.3i X-Identified-User: {2737:box543.bluehost.com:apotheon:apotheon.org} {sentby:smtp auth 24.8.180.234 authed with ren@apotheon.org} Subject: Re: SSL is broken on FreeBSD X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 01 Apr 2011 19:23:22 -0000 --K8nIJk4ghYZn606h Content-Type: text/plain; charset=iso-8859-1 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Fri, Apr 01, 2011 at 07:47:23PM +0100, Istv=E1n wrote: > Yep, SSL is broken. > This why the top500 companies are using it to secure their business. I > hope you have something better what we could implement tomorrow > deprecating SSL. >=20 > Send the RFC please. :) >=20 > Thank you in advance. You clearly did not actually read what I said. You read *into* it, creating the impression of some straw man argument in your own head, and responded to that. This is not a productive way to discuss matters of security. --=20 Chad Perrin [ original content licensed OWL: http://owl.apotheon.org ] --K8nIJk4ghYZn606h Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.14 (FreeBSD) iEYEARECAAYFAk2WI0EACgkQ9mn/Pj01uKW+FACfbS2PNydBwhZSL+gpyRsD2xNC CyEAmgNT0VBrOV73ldhQ87QuOHKBtHxQ =lIM2 -----END PGP SIGNATURE----- --K8nIJk4ghYZn606h--