cURL / Mailing Lists / curl-library / Single Mail

curl-library

Re: null embedded certificate to test

From: Daniel Stenberg <daniel_at_haxx.se>
Date: Thu, 27 Aug 2009 13:57:17 +0200 (CEST)

On Thu, 27 Aug 2009, maverick4ml topgun wrote:

> As per the security advisory http://curl.haxx.se/docs/adv_20090812.html, a
> MITM is possible with null embedded name in the certificate. Could anybody
> tell me how to create a null embedded certificate to test this ?

The easy way: get 7.19.6 and run test 310, 311 and 312.

The complete way: get 7.19.6 (or CVS) and check out tests/certs carefully.

-- 
  / daniel.haxx.se

Received on 2009-08-27

This message: [ Message body ]
Next message: Daniel Stenberg: "Re: Overall Rate limit for multi"
Previous message: maverick4ml topgun: "null embedded certificate to test"
In reply to: maverick4ml topgun: "null embedded certificate to test"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]