User: Password:
|
|
Subscribe / Log in / New account

A longstanding GnuTLS certificate validation botch

A longstanding GnuTLS certificate validation botch

Posted Mar 7, 2014 16:44 UTC (Fri) by jwakely (guest, #60262)
In reply to: A longstanding GnuTLS certificate validation botch by nix
Parent article: A longstanding GnuTLS certificate validation botch

I've always thought this was a far better solution (but have never actually used it): http://blogs.gnome.org/otte/2007/11/03/robustness-testing/


(Log in to post comments)

A longstanding GnuTLS certificate validation botch

Posted Mar 8, 2014 23:13 UTC (Sat) by nix (subscriber, #2304) [Link]

Oh, that's *neat*. You'd need to do a bit more work to make it work for threaded programs, programs with children, network state and the like, but it's still neat!

(I wonder if CRIU could be leveraged for this instead of a simple fork()?)


Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds