|
|
|
|
|
|
by Nostromov
3445 days ago
|
|
|
Yeah, no. That might take several days. Check out some of the names mentioned in the textfile, such as the Heartbleed Bug and then some of the links, such as 'Damage control'. Besically, a patch to SSL authentication lead to moar craziness and somehow there's a debate whether the protocol is broken in itself. Well, not broken, but if like everything needs to be rewritten kinda. :) ^^ Referring to depreciating the way the auth chains are stacked... Ugh, "MAC-then-Encrypt" @http://web-in-security.blogspot.rs/2016/05/curious-padding-o... Edit (looks like I can edit): Sorry, can't edit and it's 4AM losing my mind. There are things that have been exploited 3 years ago and then 1 year ago which are still very much implemented. I think that is the problem. |
|
|