[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] New HTTP authorization attack



On Tue, Aug 23, 2011 at 8:23 AM, Mike Perry <mikeperry@xxxxxxxxxx> wrote:

<snip>

SSL certificates are not isolated. They might never be. The SSL stack
is a nightmare.

Â
Mike, can you provide some specifics on how the SSL stack is a nightmare? I am working on development of an open source C-based libevent2-based stand-alone SSL MiTM proxy but have not yet hit any of the ugly stuff. Pointers to information would also be appreciated.

--ÂJulie C.
julie@xxxxxxx
GPG key FF4E2E70 available atÂhttp://keys.gnupg.netÂ
_______________________________________________
tor-talk mailing list
tor-talk@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk