Login or Register to Ask a Question and Join Our Community


Security Advisories (RSS)

Q-325: gnutls11 Cryptographic Weakness

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Special Forums Cybersecurity Security Advisories (RSS) Q-325: gnutls11 Cryptographic Weakness
# 1  
Old 12-24-2007
Q-325: gnutls11 Cryptographic Weakness
A flaw in GNU TLS cryptographic package that could allow an attacker to generate a forged signature that GNU TLS will accept as valid. The risk is LOW. Could allow an attacker to generate a forged signature that will be accepted as valid.


More...
Login or Register to Ask a Question

Previous Thread | Next Thread

2 More Discussions You Might Find Interesting

1. Solaris

Assigning cryptographic resources to the control domain

Sun documentation suggests that we need to assign cryptographic resources to the control domain as part of the initial configuration. I searched the documentation to better understand the purpose of this and know recommendation/limitation. I am doing this for Netra T5220 and wondering if the... (5 Replies)
Discussion started by: StarSol
5 Replies

2. UNIX for Advanced & Expert Users

Weakness in Perl CGI causes memory dump ??

I have discovered a curious phenomenon in GCI. I need some advice from someone far more adept. Is this a bug or potential security weakness? Context: Redhat 8.0 on xx86 (pentium 3) Apache 2.0, Perl 5.80 Background: I've been trying to harden a web application which accepts user uploaded... (0 Replies)
Discussion started by: andyj
0 Replies
Login or Register to Ask a Question

LEARN ABOUT MOJAVE

curlopt_tlsauth_type

CURLOPT_TLSAUTH_TYPE(3) 				     curl_easy_setopt options					   CURLOPT_TLSAUTH_TYPE(3)

NAME

       CURLOPT_TLSAUTH_TYPE - set TLS authentication methods

SYNOPSIS

       #include <curl/curl.h>

       CURLcode curl_easy_setopt(CURL *handle, CURLOPT_TLSAUTH_TYPE, char *type);

DESCRIPTION

       Pass  a	pointer  to  a zero terminated string as parameter. The string should be the method of the TLS authentication. Supported method is
       "SRP".

       SRP    TLS-SRP authentication. Secure Remote Password authentication for TLS is defined in RFC5054 and provides	mutual	authentication	if
	      both  sides  have a shared secret. To use TLS-SRP, you must also set the CURLOPT_TLSAUTH_USERNAME(3) and CURLOPT_TLSAUTH_PASSWORD(3)
	      options.

	      The application does not have to keep the string around after setting this option.

DEFAULT

       blank

PROTOCOLS

       All TLS-based protocols

EXAMPLE

       TODO

AVAILABILITY

       You need to build libcurl with GnuTLS or OpenSSL with TLS-SRP support for this to work. Added in 7.21.4

RETURN VALUE

       Returns CURLE_OK if the option is supported, and CURLE_UNKNOWN_OPTION if not.

SEE ALSO

       CURLOPT_TLSAUTH_USERNAME(3), CURLOPT_TLSAUTH_PASSWORD(3),

libcurl 7.54.0							 December 21, 2016					   CURLOPT_TLSAUTH_TYPE(3)