CHAOSRADIO PODCAST NETWORK
25c3_m4v Logo

Predictable RNG in the vulnerable Debian OpenSSL package

the What and the How


Veröffentlicht am: 30.12.2008, 12:45 Uhr
Präsentation vom: 30.12.2008, 12:45 Uhr

Autor: Luciano Bello, Maximiliano Bertacchini

Abstract: Recently, the Debian project announced an OpenSSL package vulnerability which they had been distributing for the last two years. This bug makes the PRNG predictable, affecting the keys generated by openssl and every other system that uses libssl (eg. openssh, openvpn).

Speakers: Luciano Bello, Maximiliano Bertacchini
Language: en
Date: 2008-12-30
Time: 12:45
Room: Saal 3

More information...

Video


Download: