Dailydave mailing list archives

Re: SHA1

From: Kristian Erik Hermansen <kristian.hermansen () gmail com>
Date: Fri, 24 Feb 2017 13:00:55 -0800

I think almost all versions of OpenVPN clients for mobile devices (windows
phone?, Android, iOS) didn't traditionally support anything greater than
sha1 crypto, so all openvpn mobile clients affected? OpenVPN traditionally
also relied on weak CA configs, so it's like time-warping back 5-10 years
in browser land? And how many OpenVPN clients actually validate their
server side end properly? Some things to consider.

On Feb 23, 2017 7:44 AM, "Dave Aitel" <dave.aitel () gmail com> wrote:

So what is it that breaking SHA1 gets you on Windows boxes?

-dave

_______________________________________________
Dailydave mailing list
Dailydave () lists immunityinc com
https://lists.immunityinc.com/mailman/listinfo/dailydave

_______________________________________________
Dailydave mailing list
Dailydave () lists immunityinc com
https://lists.immunityinc.com/mailman/listinfo/dailydave

Current thread:

SHA1 Dave Aitel (Feb 23)
- Re: SHA1 William Reyor (Feb 24)
- Re: SHA1 Ryan Kiser (Feb 24)
- Re: SHA1 Kristian Erik Hermansen (Feb 26)