|
|
|
|
|
|
by wbl
4453 days ago
|
|
|
Operating systems are filled with bugs and complexity. Yet OpenBSD has had two remote holes in a heck of a long time. Everything you cite as being necessary, was within the authors power to do. Some TLS implementations are close to being formally verified as not having undefined behaviour. OpenSSL is nowhere near that state. There's no point in helping it out when better run projects could use the resources better. |
|
|