madargon, to random avatar

and me...
Name more iconic love-hate relationship :blobcat_uwucry:

jbzfn, to debian avatar

🌀 16 years of CVE-2008-0166 - Debian OpenSSL Bug

"A patch in Debian's and Ubuntu's OpenSSL packages broke the random number generator, effectively limiting the number of possible keys to a few ten thousand plausible variations"

jschauma, to debian avatar

On the topic of "key rotation, it's not just for HTTPS", @hanno finds hundreds of DKIM keys apparently generated using the #Debian #OpenSSL predictable PRNG vulenrability from 2008 (CVE-2008-0166):

(And yes, #BIMI is still stupid.)

bbolli, to ChatGPT avatar

Haha! No, , this is not how you enable TLS session tickets!

9to5linux, to linux avatar

#Linux Weekly Roundup for April 14th, 2024: #Ubuntu 24.04 LTS enters public beta testing, #EndeavourOS devs need #ARM branch maintainer, explicit sync merged in #Xwayland and KWin, #GParted Live patched against XZ backdoor, #OpenSSL 3.3, Ubuntu Pro for #IoT devices, new #KDE Gear and Frameworks releases, new all #AMD Linux #gaming laptop, updated #ArchLinux installer, and more

#OpenSource #FOSS

shaft, (edited ) to random French avatar

3.3 is out

Here is the changelog¹

¹ including mojibake - at least in Firefox because the webserver does not a nice 'charset=UTF-8' in its content-type header

bagder, to random avatar

unfortunately, the new version does not do good enough for to consider removing the experimental label from it:

linuxiac, to security avatar

OpenSSL 3.3 debuts with advanced QUIC features, improved API functions, new cryptographic options, and more.

9to5linux, to opensource avatar
yoyo308, to random avatar

Aquí, updateando Zorin mientras tomo el café. Vuestra tarde, ¿Qué tal?

visone, avatar


Actualizando mi script para passwords para poder usarlo con tut y mantener la cuenta encryptada en la config.
Asi como actualizar las opciones de editar y añadir passwords ......

Vamos una tarde de trasteo

GrapheneOS, to random avatar

SSL Labs ( from Qualys used to be a useful HTTPS testing tool. However, it hasn't received significant updates since 2019 and is now holding back HTTPS security. The biggest issue is that many of the tests don't support TLSv1.3 so it penalizes disabling legacy TLSv1.2.


@GrapheneOS Good to know. Thanks for the heads up! 👍

Can't we have a version of SSLlabs? Sounds like generally desirable for the whole industry and likely to receive Merge Requests once established. I think many updates would be mere changes of opinions about recommended settings.

jhx, to linux avatar

Nice little oneliner to display information about a certificate from a website 😎

echo | openssl s_client -showcerts -servername -connect 2>/dev/null | openssl x509 -
inform pem -noout -text

Replace "" with what you want to query.

s_bergmann, to blender avatar

, alongside leading open source organizations including the SoftwareFoundation, Foundation, Software Foundation, Software Foundation, Foundation, and Foundation, announced today a collaborative initiative aimed at establishing common cybersecurity standards in alignment with the European Union’s Cyber Resilience Act ():

metabrainz, to random avatar

A small step - we have arranged a small annual koha (donation) to some of our open source upstream projects.

Thank you for everything -a

shaft, to debian avatar
shaft, (edited ) to random French avatar

Idée de conférence gratuite pour : cette année marque les 10 ans de la découverte de la faille Heartbleed dans (découverte proprement dite le 1er avril 2014, colmatage le 7)

Ça pourrait être l'occasion de faire le point sur les conséquences de cette faille :

  • La gestion d'OpenSSL avant et après cette découverte
  • Les forks issus de la découverte (LibreSSL, BoringSSL)

Moi j'ai la flemme de faire les recherches (pis y a pas de DNS dedans donc) 😶

hyc, to random avatar
tekkie, to infosec avatar

Interesting insight into how switched from OpenSSL to BoringSSL and why they did so.

tekkie, avatar

@kubikpixel probably rooted in the fact that has never been boring. It always fails when you need it so the engineers just felt anything new should be boring 😅

melroy, to random avatar

@bagder I couldn't find you yet.. 😭. No stand?

melroy, avatar

@bagder found you. Nice talk 😎 Here is the post quantum example in curl from k.3.401.

conansysadmin, to Cybersecurity avatar
conansysadmin, to Cybersecurity avatar

Build your own secure realm, where the most powerful secret tongues are spoken. #TLS #OpenSSL #cybersecurity #Nginx #OpenSource

conansysadmin, to Cybersecurity avatar
conansysadmin, to Cybersecurity avatar

Build your own secure realm, where the most powerful secret tongues are spoken. #TLS #OpenSSL #cybersecurity #Nginx #OpenSource

rolle, to opensource avatar

I’m so tired of the capitalist argument that an open source project cannot be successful because it’s based on nonprofit or donations instead of vc funding and corporates.

Some people seem to actually believe in this narrative that Linux, Mozilla products and the Internet itself are all alive solely because of for-profit industries while forgetting that the actual people, inventors, universities and organisations do exist in this world. Also the contributing factors by companies do not nullify the brilliance of the original project. FFS, it is not all because of the money.

mwfc, avatar

I am not sure I would include Linux in it, given that kernel work is really a lot of corporate work.

I consider a better example. A lot of academia goes into it and helps to foster a full ecosystem that is dependend on it. Yes, there are plenty of sponsors like Intel, but in its core it has been driven by academics for a long time.
And there are plenty of other ubiquous libraries. Maybe even products like
sadly is too, being neglected by funding for too long.

heisec, to security German

Sicherheitsupdate: Verwundbare Komponenten gefährden Nessus Network Monitor

Schwachstellen unter anderem in OpenSSL gefährden die Monitoringlösung Nessus Network Monitor.

  • All
  • Subscribed
  • Moderated
  • Favorites
  • megavids
  • kavyap
  • DreamBathrooms
  • InstantRegret
  • magazineikmin
  • ngwrru68w68
  • cubers
  • thenastyranch
  • Youngstown
  • rosin
  • slotface
  • cisconetworking
  • mdbf
  • ethstaker
  • JUstTest
  • Durango
  • khanakhh
  • GTA5RPClips
  • anitta
  • osvaldo12
  • everett
  • normalnudes
  • tester
  • tacticalgear
  • provamag3
  • modclub
  • Leos
  • lostlight
  • All magazines