Twitter | Pretraživanje | |
Hector Martin
Worth noting that RFC5480 disallows custom ECC curves for PKIX, and of course they are also verboten in the WebPKI. But both crypt32 and OpenSSL seem to support it.
02:13 - 17. sij 2020.
Reply Retweet Označi sa "sviđa mi se" More
Salearlyman 17. sij
Odgovor korisniku/ci @marcan42
OpenSSL seems to have been aware of the problem at some point?
Prikaz razgovora · Reply Retweet Označi sa "sviđa mi se"
Hector Martin 17. sij
Odgovor korisniku/ci @learlyman
Ah, I checked 1.0. Good to know they disabled it.
Prikaz razgovora · Reply Retweet Označi sa "sviđa mi se"
roothorick 17. sij
Odgovor korisniku/ci @marcan42
OpenSSL just kinda supports everything, regardless of whether actually using a thing is a good idea, doesn't it?
Prikaz razgovora · Reply Retweet Označi sa "sviđa mi se"
Elichai Turkel 18. sij
Odgovor korisniku/ci @marcan42
This is one of the reason I want to implement a minimal TLS library. Trying to support the least weird things while still supporting ~80%+ of the web. I hope I'll find the time to work on that at some point
Prikaz razgovora · Reply Retweet Označi sa "sviđa mi se"