search.internet.com

Become a Marketplace Partner internet.commerce Be a Commerce Partner Linux Today Enterprise Linux Today Apache Today JustLinux.com Linux Planet PHPBuilder All Linux Devices Technology Jobs LinuxToday Newsletters Subscribe News Subscribe PR Subscribe Security internet.com IT Developer Internet News Small Business Personal Technology Search internet.com Advertise Corporate Info Newsletters Tech Jobs E-mail Offers

Current Newswire: Ubuntu, the Manual Project Transcoding 50 fps Interlaced AVCHD to 50 fps Progressive x264 with MEncoder Debian GNU/Linux Milestones Do you know which more things vlc mediplayer can do ? Install The Newest Firefox PPA with command "add-apt-repository" (Karmic) Hidden Linux : Learning to love KDE 4 (part I) Change default applications easily in GNOME Blu-Ray Comes to Linux, Finally! Kodak Easyshare Wireless Picture Frame - How to show everyone whats on your frame The Great Open Source Netbook Interface Race Technical Specialist II – PC – LAN (AZ) Next Step Systems US-AZ-Scottsdale Post A Job | Post A Resume Widespread vulnerabilities found in programs which use OpenSSL Jan 9, 2009, 17 :03 UTC (10 Talkback[s]) (4780 reads) "The most important affected program is ISC Bind, which is the most widely used DNS server on the internet. A flaw in its validation of signatures on DNSSEC replies means that the server may be vulnerable to DNS spoofing attacks even where DNSSEC is in use. Bind have released BIND 9.6.0-P1 this morning to fix this bug. "The common mistake is in the checking of return values from functions in OpenSSL that check digital signatures. Programmers have failed to allow for all the possible return values of the EVP_VerifyFinal function, and as a result some cases where the signature has not been successfully checked can be mistakenly treated as successfully verified." Complete Story Related Stories: Perspectives Extension Improves HTTPS Security(Oct 21, 2008) Flaws Found in BSD, Linux Software Updaters(Jul 15, 2008) After Debian's Epic SSL Blunder, A World of Hurt for Security Pros(May 22, 2008) Flaws Reported in Validated OpenSSL Module v1.1.1(Nov 29, 2007) All Systems Go for Validation of Updated OpenSSL Module(Sep 12, 2007) Index Mode   |   Flat Mode   |   Thread Mode   |   Thread Flat     Talkback(s) Name  and Date   Line for line copy of UNIX    darryl Jan 9, 2009, 19:34:34     Re: Line for line copy of UNIX    txtechdog Jan 9, 2009, 20:09:56     http://www.openssl.org/    Arthur Marsh Jan 9, 2009, 20:25:11     Re: Re: Line for line copy of UNIX    Tony OBryan Jan 9, 2009, 20:58:13     Re: Re: Re: Line for line copy of UNIX    Jeff Cobb Jan 9, 2009, 21:05:06     Re: Re: Re: Re: Line for line copy of UNIX    Bernard Swiss Jan 10, 2009, 03:11:04     Re: Line for line copy of UNIX in Windows    Ken Jennings Jan 10, 2009, 06:18:33     Darryl or Darl    blackhole Jan 10, 2009, 10:01:59     Re: Darryl or Darl    Jeff Cobb Jan 11, 2009, 03:00:44     Re: Line for line copy of UNIX    Rainer Weikusat Jan 11, 2009, 12:56:25     Home | Search Talkbacks | Customize View    Top of Page   Enter your comments below: * Your Name: * Your Email Address: * Subject: CC: [will also send this talkback to an E-Mail address] * Comments: Tags allowed:<I>,<B> and <U>. See our talkback-policy for more about talkback content. Fields marked with * are required!

All times are recorded in UTC. Linux is a trademark of Linus Torvalds. Powered by Linux, Apache and PHP The Network for Technology Professionals Search: About Internet.com Legal Notices, Licensing, Permissions, Privacy Policy. Advertise | Newsletters | E-mail Offers Solutions Whitepapers and eBooks Microsoft Personalized Whitepapers and Resources for You Microsoft SQL Server 2008 Index Articles: Build a More Agile Business with IBM IBM Articles: Virtualization Delivers a Dynamic Infrastructure Articles: IBM Offers Enhanced Measurement and Management for Energy Usage Articles: IBM Helps Transformation to an Information-Based Enterprise Microsoft Articles: Visual Studio 2010 Adobe Article: Adobe Helps PHP Developers Create Rich Internet Applications Microsoft SharePoint Index Adobe Article: Java Developers Finding a Home at Adobe Flex IBM Articles: A Smarter Business Needs Smarter Technology Microsoft Article: Stress Free and Efficient Designer/Developer Collaboration MORE WHITEPAPERS, EBOOKS, AND ARTICLES Webcasts Microsoft Forefront Index Microsoft Unified Communications Index Webcast: Connecting PHP to Microsoft Technologies Video: Windows Azure Debugging Tips SAP BusinessObjects Webcast: Unlock the Power of Reporting with Crystal Reports MORE WEBCASTS, PODCASTS, AND VIDEOS Downloads and eKits Download: Microsoft Visual Studio 2010 Beta 2 Microsoft Windows Server 2008 R2 Index Downloads & Free Trials: Microsoft's New Efficiency Resource Center Get the Windows 7 SDK Free Trial: Red Gate SQL Backup Pro 6 Iron Speed Designer Application Generator MORE DOWNLOADS, EKITS, AND FREE TRIALS Tutorials and Demos Microsoft Article: Boost Your Virtualisation ROI Internet.com Hot List: Get the Inside Scoop on IT and Developer Products Microsoft Article: Forefront Offers One-Stop Security Shopping for the Enterprise All About Botnets Microsoft Article: Improved Web Collaboration on Tap for 2010 Microsoft System Center Index MORE TUTORIALS, DEMOS AND STEP-BY-STEP GUIDES