cosign-discuss at umich.edu
general discussion of cosign development and deployment
 
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: runtime requirements for IISCosign

On 19 Apr 2004, at 18:50, Brett Lomas wrote: 
Also, you may or may not know the security bulletin release for OpenSSL
suggesting upgrading to OpenSSL 0.9.7d (exploits I think)

It's a denial of service issue:

http://www.openssl.org/news/secadv_20040317.txt

The next versions of the cosign components will be built against the latest OpenSSL.

:wes