[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Tor and Openssl bug CVE-2014-0160

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] Tor and Openssl bug CVE-2014-0160
From: Geoff Down <geoffdown@xxxxxxxxxxxx>
Date: Tue, 08 Apr 2014 13:31:01 +0100
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 08 Apr 2014 10:53:09 -0400
Dkim-signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d=fastmail.net; h= message-id:from:to:mime-version:content-transfer-encoding :content-type:in-reply-to:references:subject:date; s=mesmtp; bh= ebvNkTXa3rtbh5uulLqSm0/aGk0=; b=LsdIUgJ06THGNqa2v35otvuGSoCo3d0e Lw1eav5NVpkDuv1RinUSQ+e7W7qCL9rx2iManRVVmxhhCATYi+eiRoT62/yG8q2B 9EBgAyuN7TbvvaIMshZcRRjHXMvujUSkmQtgAsoWrpqq9VCN/mHqgHR6i4kSdybD TW3xmyRY4nQ=
Dkim-signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d= messagingengine.com; h=message-id:from:to:mime-version :content-transfer-encoding:content-type:in-reply-to:references :subject:date; s=smtpout; bh=ebvNkTXa3rtbh5uulLqSm0/aGk0=; b=nF8 B20drz5v6UDQEV6un3uh7zFLHNb6kqXpM4u1xkH27HTL0QpSZ9XYdBMJjVlOIjgO Cjgn7X33W7tVysZX/v+dn18dmt/gezN94ZUSrBD7SWqmb3GHBKgl8V4rHXosddFG i2h/A+vk6l9ajc7tESX9vENWkuHnIVzkDUud2PkE=
In-reply-to: <CAEydrT8QhtQ_1=rTF3oH_bkLjybQeNPuAENmiQ9ZH5FGghE_Hw@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <20140407231747.GH22584@xxxxxxxxxxxxxx> <1396922166.18015.103913225.2F40F147@xxxxxxxxxxxxxxxxxxxxxxxxxxx> <CAEydrT8QhtQ_1=rTF3oH_bkLjybQeNPuAENmiQ9ZH5FGghE_Hw@xxxxxxxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>

On Tue, Apr 8, 2014, at 02:57 AM, kendrick eastes wrote:
> from https://blog.torproject.org/blog/openssl-bug-cve-2014-0160 :
[edit]
> >
> > So this is the openssl *binary*, the version of which is found by typing
> >  openssl version
> > not some library used when compiling Tor?
> >  If the latter, how do we find the version?
> > GD
Thanks, but I already read the blog post and didn't get the information
I need from it: 
a) whether it's the openssl binary (/usr/bin/openssl) that I need to
check or some other 'openssl' object
b) if some other object, where is it in OSX10.4 and how do I check the
version
c) if the version is a vulnerable one, how do I update it
? 
(I am not a programmer, but I run a relay from compiled code)
GD

-- 
http://www.fastmail.fm - Does exactly what it says on the tin

-- 
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

Follow-Ups:
- Re: [tor-talk] Tor and Openssl bug CVE-2014-0160
  - From: Andreas Krey

References:
- [tor-talk] Tor and Openssl bug CVE-2014-0160
  - From: Roger Dingledine
- Re: [tor-talk] Tor and Openssl bug CVE-2014-0160
  - From: Geoff Down
- Re: [tor-talk] Tor and Openssl bug CVE-2014-0160
  - From: kendrick eastes

Prev by Author: Re: [tor-talk] Tor and Openssl bug CVE-2014-0160
Next by Author: Re: [tor-talk] Tor and Openssl on old OSX [was Tor and Openssl bug CVE-2014-0160]
Previous by thread: Re: [tor-talk] Tor and Openssl bug CVE-2014-0160
Next by thread: Re: [tor-talk] Tor and Openssl bug CVE-2014-0160
Index(es):
- Author
- Thread