A new vulnerability in OpenSSL has been discovered -- specifically only if you are running OpenSSL versions 1.0.2c, 1.0.2b, 1.0.1n and 1.0.1o. This vulnerability relates to certificate validation, and could allow an attacker to bypass that validation.
That's the bad news.
The good news is that […]
FIPS? - You may have heard about MIPS or about ECLIPSE, but FIPS?
Granted, the U.S. "Federal Information Processing Standard" does not sound like the coolest thing to talk about on a sunny spring day. Yet, we are happy to have achieved SUSE's first-ever FIPS 140-2 validation for OpenSSL last week. See:http://csrc.nist.[…]