[Dailydave] SHA1
Kristian Erik Hermansen
kristian.hermansen at gmail.com
Fri Feb 24 16:00:55 EST 2017
I think almost all versions of OpenVPN clients for mobile devices (windows
phone?, Android, iOS) didn't traditionally support anything greater than
sha1 crypto, so all openvpn mobile clients affected? OpenVPN traditionally
also relied on weak CA configs, so it's like time-warping back 5-10 years
in browser land? And how many OpenVPN clients actually validate their
server side end properly? Some things to consider.
On Feb 23, 2017 7:44 AM, "Dave Aitel" <dave.aitel at gmail.com> wrote:
> So what is it that breaking SHA1 gets you on Windows boxes?
>
> -dave
>
> _______________________________________________
> Dailydave mailing list
> Dailydave at lists.immunityinc.com
> https://lists.immunityinc.com/mailman/listinfo/dailydave
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.immunityinc.com/pipermail/dailydave/attachments/20170224/3f9eb150/attachment.html>
More information about the Dailydave
mailing list