Sigmoid Social

5 posts4 participants1 post today

Peter N. M. HansteenLibreSSL 4.1.0 released <a href="https://www.undeadly.org/cgi?action=article;sid=20250430112153" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.undeadly.org/cgi?action=article;sid=20250430112153</a> <a href="https://mastodon.social/tags/openbsd" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#openbsd</a> <a href="https://mastodon.social/tags/libressl" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#libressl</a> <a href="https://mastodon.social/tags/ssl" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ssl</a> <a href="https://mastodon.social/tags/tls" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#tls</a> <a href="https://mastodon.social/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#security</a> <a href="https://mastodon.social/tags/openssl" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#openssl</a> <a href="https://mastodon.social/tags/networking" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#networking</a> <a href="https://mastodon.social/tags/privacy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#privacy</a> <a href="https://mastodon.social/tags/crypto" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#crypto</a> <a href="https://mastodon.social/tags/cryptography" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cryptography</a>

Nicola Tuveri<a href="https://floss.social/tags/OpenSSL" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OpenSSL</a> 📢 -- Have Your Say! Vote Now in the Technical Advisory Committee Elections and Support Your Community🔗 <a href="https://openssl-corporation.org/post/2025-04-28-tac25-elections/?utm_source=atom_feed" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://openssl-corporation.org/post/2025-04-28-tac25-elections/?utm_source=atom_feed</a>From <a href="https://floss.social/tags/OpenSSL" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OpenSSL</a> -- Blog on OpenSSL Corporation

Al SuttonIf anyone else encounters this, it’s because you have the wrong IP address for the server being given to your client 🤦‍♂️ <a href="https://snapp.social/tags/Debian12" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Debian12</a> <a href="https://snapp.social/tags/Debian" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Debian</a> <a href="https://snapp.social/tags/OpenSSL" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OpenSSL</a>

Al SuttonOh this has unexpected fun written all over it....``` alsutton@t5810:~$ openssl s_client -connect downloads.snappautomotive.com:443 -servername downloads.snappautomotive.com CONNECTED(00000003) 401729AACC7F0000:error:0A000438:SSL routines:ssl3_read_bytes:tlsv1 alert internal error:../ssl/record/rec_layer_s3.c:1605:SSL alert number 80 ```<a href="https://snapp.social/tags/Debian12" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Debian12</a> <a href="https://snapp.social/tags/Debian" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Debian</a> <a href="https://snapp.social/tags/OpenSSL" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OpenSSL</a>

ϺΛDИVTTΛHVersion 1.23.0-0 of our <a href="https://fosstodon.org/tags/unbound" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#unbound</a> docker image was released by madnuttah-bot yesterday! 💚<a href="https://fosstodon.org/tags/OpenSSL" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OpenSSL</a> has been updated to 3.5.0 after testing in the <a href="https://fosstodon.org/tags/canary" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#canary</a> image, too.<a href="https://github.com/madnuttah/unbound-docker" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://github.com/madnuttah/unbound-docker</a><a href="https://hub.docker.com/r/madnuttah/unbound" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://hub.docker.com/r/madnuttah/unbound</a><a href="https://fosstodon.org/@nlnetlabs" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@nlnetlabs</a> <a href="https://fosstodon.org/tags/foss" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#foss</a> <a href="https://fosstodon.org/tags/opensource" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#opensource</a> <a href="https://fosstodon.org/tags/selfhosting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#selfhosting</a> # homelab <a href="https://fosstodon.org/tags/dns" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#dns</a> <a href="https://fosstodon.org/tags/dnssec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#dnssec</a>

[ENC]BladeXPTIL: <a href="https://chaos.social/tags/zscaler" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#zscaler</a> verteilt teilweise Certificate Authorities welche gegen RfC 5280 (May 2008) verstoßen.Erstmal ein akademisches Problem, bis man feststellt das <a href="https://chaos.social/tags/python" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#python</a> >= 3.13 nun strict checks aktiviert hat in <a href="https://chaos.social/tags/openssl" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#openssl</a> und das damit dann halt weh tut.

QuixoticgeekDoes anyone know how this new SSL cert expiry date thing is going to affect things like user authentication with SSL certs, i.e. for openvpn. If we're running our own CA, can I get safari, chrome et al to accept longer cert expiry? <a href="https://social.v.st/tags/Linux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Linux</a> <a href="https://social.v.st/tags/SSL" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SSL</a> <a href="https://social.v.st/tags/OpenVPN" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OpenVPN</a> <a href="https://social.v.st/tags/OpenSSL" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OpenSSL</a> <a href="https://social.v.st/tags/ACME" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ACME</a>

daniel:// stenberg://Meanwhile in <a href="https://mastodon.social/tags/curl" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#curl</a> land, we can now do <a href="https://mastodon.social/tags/HTTP3" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#HTTP3</a> with <a href="https://mastodon.social/tags/ngtcp2" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ngtcp2</a> 1.12.0 and <a href="https://mastodon.social/tags/OpenSSL" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OpenSSL</a> 3.5.Thanks to lots of amazing people, including <a href="https://chaos.social/@icing" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@icing</a> and Tatsuhiro of ngtcp2 of course.

9to5Linux<a href="https://floss.social/tags/Linux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Linux</a> Weekly Roundup for April 13th, 2025: <a href="https://floss.social/tags/LMDE" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#LMDE</a> 7 getting OEM support, <a href="https://floss.social/tags/Pinta" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Pinta</a> 3.0 ported to GTK4, <a href="https://floss.social/tags/DXVK" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DXVK</a> 2.6.1 improves support for <a href="https://floss.social/tags/AMD" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AMD</a> Vega GPUs and several games, <a href="https://floss.social/tags/OpenSSL" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OpenSSL</a> 3.5, <a href="https://floss.social/tags/fwupd" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#fwupd</a> 2.0.8, <a href="https://floss.social/tags/IPFire" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#IPFire</a> gets post-quantum cryptography support, and more <a href="https://9to5linux.com/9to5linux-weekly-roundup-april-13th-2025" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://9to5linux.com/9to5linux-weekly-roundup-april-13th-2025</a><a href="https://floss.social/tags/OpenSource" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OpenSource</a> <a href="https://floss.social/tags/FOSS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#FOSS</a>

daniel:// stenberg://Can distros ship <a href="https://mastodon.social/tags/git" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#git</a> that ends up using <a href="https://mastodon.social/tags/OpenSSL" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OpenSSL</a> (via libcurl)? This bug was filed against Debian:<a href="https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1094969" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1094969</a>

Parade du Grotesque 💀Also: <a href="https://mastodon.sdf.org/tags/Slackware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Slackware</a> 15 has a security update for Python3:<a href="http://www.slackware.com/security/viewer.php?l=slackware-security&y=2025&m=slackware-security.326755" rel="nofollow noopener noreferrer" target="_blank">http://www.slackware.com/security/viewer.php?l=slackware-security&y=2025&m=slackware-security.326755</a>Slackware-current just adopted <a href="https://mastodon.sdf.org/tags/OpenSSH" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OpenSSH</a> 10.0.p1 & <a href="https://mastodon.sdf.org/tags/OpenSSL" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OpenSSL</a> 3.5n/openssh-10.0p1-x86_64-1.txz: Upgraded. Potentially-incompatible changes include the removal of the weak DSA signature algorithm, completing the deprecation process that began in 2015 (when DSA was disabled by default) and repeatedly warned over the last 12 months.n/openssl-3.5.0-x86_64-1.txz: Upgraded. New LTS release, supported until 08 Apr 2030.

testssl.sh :verified:Some browsers and also <a href="https://infosec.exchange/tags/OPenSSL" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OPenSSL</a> 3.5.0 support already <a href="https://infosec.exchange/tags/PQ" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#PQ</a> <a href="https://infosec.exchange/tags/KEMs" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#KEMs</a> for key exchange to to provide secure key establishment resistance.The (real soon now) to be released testssl.sh 3.2 final will include handshake simulation, see last column:

daniel:// stenberg://It looks like the <a href="https://mastodon.social/tags/OpenSSL" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OpenSSL</a> QUIC API might be supported in the coming <a href="https://mastodon.social/tags/ngtcp2" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ngtcp2</a> 1.12.0 release:<a href="https://github.com/ngtcp2/ngtcp2/pull/1582" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://github.com/ngtcp2/ngtcp2/pull/1582</a>This could be exciting for <a href="https://mastodon.social/tags/curl" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#curl</a> users building with <a href="https://mastodon.social/tags/OpenSSL" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OpenSSL</a> ...

Nicola Tuveri<a href="https://floss.social/tags/OpenSSL" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OpenSSL</a> 📢 -- Now is the time to nominate for the Technical Advisory Committees (TACs)🔗 <a href="https://github.com/openssl/openssl/discussions/27326" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://github.com/openssl/openssl/discussions/27326</a>From <a href="https://floss.social/tags/OpenSSL" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OpenSSL</a> -- Recent discussions in openssl/openssl, category: announcements

John ShaftYay, <a href="https://piaille.fr/tags/OpenSSL" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OpenSSL</a> 3.5 (bringing server-side QUIC, <a href="https://piaille.fr/tags/PQC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#PQC</a> (ML-KEM, ML-DSA))... will be available in <a href="https://piaille.fr/tags/Debian" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Debian</a> Trixie

heise onlineMittwoch: Einbruch in US-Bankenaufsicht, TSMC vor Milliardenstrafe wegen HuaweiBankenaufsicht bespitzelt + Strafe nach Exportverbot + FreeDOS in neuer Version + Commandos-Spiel angetestet + OpenSSL mit Post-Quanten-Verfahren + Bit-Rauschen<a href="https://www.heise.de/news/Mittwoch-Einbruch-in-US-Bankenaufsicht-TSMC-vor-Milliardenstrafe-wegen-Huawei-10345422.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.heise.de/news/Mittwoch-Einbruch-in-US-Bankenaufsicht-TSMC-vor-Milliardenstrafe-wegen-Huawei-10345422.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon</a><a href="https://social.heise.de/tags/Betriebssystem" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Betriebssystem</a> <a href="https://social.heise.de/tags/EMail" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#EMail</a> <a href="https://social.heise.de/tags/hoDaily" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#hoDaily</a> <a href="https://social.heise.de/tags/Huawei" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Huawei</a> <a href="https://social.heise.de/tags/Journal" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Journal</a> <a href="https://social.heise.de/tags/Kriminalit%C3%A4t" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Kriminalität</a> <a href="https://social.heise.de/tags/OpenSource" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OpenSource</a> <a href="https://social.heise.de/tags/OpenSSL" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OpenSSL</a> <a href="https://social.heise.de/tags/Quantencomputer" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Quantencomputer</a> <a href="https://social.heise.de/tags/Spiele" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Spiele</a> <a href="https://social.heise.de/tags/TSMC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#TSMC</a> <a href="https://social.heise.de/tags/Verschl%C3%BCsselung" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Verschlüsselung</a> <a href="https://social.heise.de/tags/news" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#news</a>

heise online EnglishOpenSSL 3.5.0 now contains post-quantum proceduresWith the new LTS version 3.5.0, OpenSSL adds the post-quantum methods ML-KEM, ML-DSA and SLH-DSA to its library.<a href="https://www.heise.de/en/news/OpenSSL-3-5-0-now-contains-post-quantum-procedures-10345305.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.heise.de/en/news/OpenSSL-3-5-0-now-contains-post-quantum-procedures-10345305.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon</a><a href="https://social.heise.de/tags/IT" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#IT</a> <a href="https://social.heise.de/tags/Verschl%C3%BCsselung" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Verschlüsselung</a> <a href="https://social.heise.de/tags/OpenSSL" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OpenSSL</a> <a href="https://social.heise.de/tags/Security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Security</a> <a href="https://social.heise.de/tags/SSL" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SSL</a> <a href="https://social.heise.de/tags/news" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#news</a>

heise SecurityOpenSSL 3.5.0 enthält nun Post-Quanten-VerfahrenOpenSSL fügt mit der neuen LTS-Version 3.5.0 seiner Bibliothek die Post-Quanten-Verfahren ML-KEM, ML-DSA und SLH-DSA hinzu.<a href="https://www.heise.de/news/OpenSSL-3-5-0-enthaelt-nun-Post-Quanten-Verfahren-10345122.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.heise.de/news/OpenSSL-3-5-0-enthaelt-nun-Post-Quanten-Verfahren-10345122.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon</a><a href="https://social.heise.de/tags/IT" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#IT</a> <a href="https://social.heise.de/tags/Verschl%C3%BCsselung" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Verschlüsselung</a> <a href="https://social.heise.de/tags/OpenSSL" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OpenSSL</a> <a href="https://social.heise.de/tags/Security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Security</a> <a href="https://social.heise.de/tags/SSL" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SSL</a> <a href="https://social.heise.de/tags/news" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#news</a>

RenézuCodeI just published <a href="https://chaos.social/tags/OpenSSL" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OpenSSL</a> 3.5.0 Released: Major Cryptographic Advancements with a Nod to Post-Quantum Security <a href="https://medium.com/p/openssl-3-5-0-released-major-cryptographic-advancements-with-a-nod-to-post-quantum-security-0a3ed64f6d97?source=social.tw" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://medium.com/p/openssl-3-5-0-released-major-cryptographic-advancements-with-a-nod-to-post-quantum-security-0a3ed64f6d97?source=social.tw</a>

LinuxiacOpenSSL 3.5 introduces major crypto updates, including PQC support, server-side QUIC, and new TLS defaults. <a href="https://linuxiac.com/openssl-3-5-brings-major-cryptographic-shifts/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://linuxiac.com/openssl-3-5-brings-major-cryptographic-shifts/</a><a href="https://mastodon.social/tags/openssl" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#openssl</a> <a href="https://mastodon.social/tags/opensource" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#opensource</a> <a href="https://mastodon.social/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#security</a>

Recent searches

Search options

Administered by:

Server stats:

#openssl