[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-relays] Shutting down middle relays (off-topic)

To: tor-relays@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-relays] Shutting down middle relays (off-topic)
From: Tora Tora Tora <tor@xxxxxxxxxxxxxx>
Date: Sat, 21 Jun 2014 21:36:48 -0400
Comment: DomainKeys? See http://antispam.yahoo.com/domainkeys
Delivered-to: archiver@xxxxxxxx
Delivery-date: Sat, 21 Jun 2014 21:37:00 -0400
Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=private; d=allthatnet.com; b=tmMSFD0jfmWrwQWzFd3QyM9o2FYekooBJDYfMCRcwk/YE/jhavCG97KdMmm4ADRH;
In-reply-to: <53A5D852.3030707@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-relays/>
List-help: <mailto:tor-relays-request@lists.torproject.org?subject=help>
List-id: "support and questions about running Tor relays \(exit, non-exit, bridge\)" <tor-relays.lists.torproject.org>
List-post: <mailto:tor-relays@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=unsubscribe>
References: <53A3BCE6.1020100@xxxxxxxxxxxxxx> <53A41EBF.8020902@xxxxxxxxxxxxx> <53A43468.9080500@xxxxxxxxxxxxxx> <1403271897.117926870@xxxxxxxxxxxxxxxxxx> <20140620163224.6E70E601E5@xxxxxxxxxxxxxxxxx> <53A5D852.3030707@xxxxxxxxxxxxxx>
Reply-to: tor-relays@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-relays" <tor-relays-bounces@xxxxxxxxxxxxxxxxxxxx>
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:24.0) Gecko/20100101 Thunderbird/24.6.0

Basically, I am left to conclude that (1) the latest update on
Fedora/Centos does not patch CCS Injection vulnerability or (2) the test
is wrong--correction, both Tripwire and Qualys tests are wrong or (3)
between a Fedora and two Centos machines, one of which is really just a
test machine, all are out of wack or (4) something else is weird.

Anyone else ran Qualys test on their "patched" Centos server?

https://www.ssllabs.com/ssltest/analyze.html?d=YOUR_DOMAIN_NAME&hideResults=on

Anyone else tried Tripwire on their "patched" Centos server?

https://raw.githubusercontent.com/Tripwire/OpenSSL-CCS-Inject-Test/master/OSSL_CCS_InjectTest.py

I would love to see if anyone else is getting the same warnings.

Thanks...


On 06/21/2014 03:09 PM, Tora Tora Tora wrote:
> And now I have tried a reboot. No change. Weird ...
_______________________________________________
tor-relays mailing list
tor-relays@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

Follow-Ups:
- Re: [tor-relays] Shutting down middle relays (off-topic)
  - From: Andreas Reich

References:
- [tor-relays] Shutting down middle relays (off-topic)
  - From: Tora Tora Tora
- Re: [tor-relays] Shutting down middle relays (off-topic)
  - From: Steve Snyder
- Re: [tor-relays] Shutting down middle relays (off-topic)
  - From: Tora Tora Tora
- Re: [tor-relays] Shutting down middle relays (off-topic)
  - From: Steve Snyder
- Re: [tor-relays] Shutting down middle relays (off-topic)
  - From: cbritt@xxxxxxxx
- Re: [tor-relays] Shutting down middle relays (off-topic)
  - From: Tora Tora Tora

Prev by Author: Re: [tor-relays] Shutting down middle relays (off-topic)
Next by Author: Re: [tor-relays] Shutting down middle relays (off-topic)
Previous by thread: Re: [tor-relays] Shutting down middle relays (off-topic)
Next by thread: Re: [tor-relays] Shutting down middle relays (off-topic)
Index(es):
- Author
- Thread