[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Vulnerability in OpenSSL 1.0.x & Firefox 4 Silent Updates

To: or-talk@xxxxxxxx
Subject: Vulnerability in OpenSSL 1.0.x & Firefox 4 Silent Updates
From: whowatchesthewatcherswatches@xxxxxxxxxxxxx
Date: Wed, 11 Aug 2010 02:42:15 -0400
Delivered-to: archiver@xxxxxxxx
Delivered-to: or-talk-outgoing@xxxxxxxx
Delivered-to: or-talk@xxxxxxxx
Delivery-date: Wed, 11 Aug 2010 02:42:38 -0400
Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=N1-0105; d=Safe-mail.net; b=N4I/rnDtJinVYrATPyyI7YmiywzUKDeZPiyTaAWdt5I6jUZiLOKdAGlF3U72G2x+ 4NLepKx3AmejmZECK/UPMgY5+p73LRdoCDU7mhcBb+RdJ+nKC8Ap9JKoh1+1pZy4 6brIpgjA+DED8USPDCTIp6l+zFuHvcRVmV1NR03yxaU=;
Reply-to: or-talk@xxxxxxxxxxxxx
Sender: owner-or-talk@xxxxxxxxxxxxx

Vulnerability in OpenSSL 1.0.x
http://marc.info/?t=128118169100001&r=1&w=2
http://archives.neohapsis.com/archives/fulldisclosure/2010-08/0085.html

Tor server/client use vuln?

Firefox 4 Silent Updates
http://news.slashdot.org/story/10/08/07/1239224/Like-Googles-Chrome-Mozilla-To-Silently-Update-Firefox-4

Torbutton to add protection against this feature as it currently protects against FF Addon auto updates?
***********************************************************************
To unsubscribe, send an e-mail to majordomo@xxxxxxxxxxxxxx with
unsubscribe or-talk    in the body. http://archives.seul.org/or/talk/

Follow-Ups:
- Re: Vulnerability in OpenSSL 1.0.x & Firefox 4 Silent Updates
  - From: Andrew Lewman
- Re: Vulnerability in OpenSSL 1.0.x & Firefox 4 Silent Updates
  - From: Nick Mathewson

Prev by Author: Re: Legal response to real abuse
Next by Author: Noscript JAR Settings?
Previous by thread: Exit Jisunglove
Next by thread: Re: Vulnerability in OpenSSL 1.0.x & Firefox 4 Silent Updates
Index(es):
- Author
- Thread