|
|
|
|
|
|
by remosi
4454 days ago
|
|
|
It runs in process tho, so it would have had the exact same result with heartbleed. Its keys need to be readable to that user, so exploits like http://blog.detectify.com/post/82370846588/how-we-got-read-a... would also still leak your private keys. So no net win here unfortunately. opencryptoki has a softhsm too, but again, it appears to run in process. Same problems. |
|
|