Re: announce: weaken for netscape !!

New Message	Reply	About this list	Date view	Thread view	Subject view	Author view

Jeff Weinstein (jsw@netscape.com)
Fri, 10 Apr 1998 13:45:08 -0700

Next message: Mark A. Herschberg: "postage without licking or sticking -- just clicking."
Previous message: Anonymous Sender: "weaken : contact the author"

Anonymous Sender wrote:
> md5 -r 0x400-0x32ca00,0x384a00:0x58400 ...\program\netscape.exe

What it someone has already tampered with your md5 program?

> if you can play with ssleay, you can change the ssl/ssl_txt.c, ssl/s3_srvr.c
> and ssl/ssl.h in order to keep the premaster secret in memory so you can display it
> in the output given by s_server -accept <port> -www
> good luck

What if someone has weakened ssleay in such a way as to display a valid
looking value even if one is not present?

> -----BEGIN PGP SIGNATURE-----

What if someone has tampered with....

--Jeff

Next message: Mark A. Herschberg: "postage without licking or sticking -- just clicking."
Previous message: Anonymous Sender: "weaken : contact the author"

New Message	Reply	About this list	Date view	Thread view	Subject view	Author view

All trademarks and copyrights are the property of their respective owners.
Other Directory Sites: SeekWonder | Directory Owners Forum

The following archive was created by hippie-mail 7.98617-22 on Fri Aug 21 1998 - 17:16:56 ADT