[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
Re: [tor-bugs] #19983 [Core Tor/Tor]: Is openssl 1.1.0's "secure heap" feature useful for us?
#19983: Is openssl 1.1.0's "secure heap" feature useful for us?
--------------------------+------------------------------
Reporter: nickm | Owner:
Type: defect | Status: new
Priority: Medium | Milestone: Tor: 0.2.???
Component: Core Tor/Tor | Version:
Severity: Normal | Resolution:
Keywords: openssl110 | Actual Points:
Parent ID: | Points:
Reviewer: | Sponsor:
--------------------------+------------------------------
Comment (by teor):
Sounds like a good idea - but we should make sure we turn it on for all
private keys, not just the automatic RSA key protection.
http://blog.nullspace.io/akamai-ssl-patch.html
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/19983#comment:1>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs