oss-sec mailing list archives
Re: Apache 2.4 mod_ssl SSLSessionTickets -- others vulnerable?
From: Michael Samuel <mik () miknet net>
Date: Thu, 5 Feb 2015 11:18:01 +1100
On 5 February 2015 at 03:35, Mark Felder <feld () feld me> wrote:
*) mod_ssl: New directive SSLSessionTickets (On|Off).
And as with nginx and OpenSSL s3_srvr.c, there's no retval check on RAND_pseudo_bytes() when creating the IV to encrypt the session ticket. This isn't exploitable with the default RNG (you won't get this far without a working RNG), but be careful if your engine is flaking out - you could be sending something else out with your IVs... For the record: -1 : Error, buffer not filled 0 : Buffer filled with potentially predictable entropy (unless an engine aliased their RAND_bytes interface to RAND_pseudo_bytes!) 1 : Success Regards, Michael
Current thread:
- Apache 2.4 mod_ssl SSLSessionTickets -- others vulnerable? Mark Felder (Feb 04)
- Re: Apache 2.4 mod_ssl SSLSessionTickets -- others vulnerable? Florent Daigniere (Feb 04)
- Re: Apache 2.4 mod_ssl SSLSessionTickets -- others vulnerable? Mark Felder (Feb 04)
- Re: Apache 2.4 mod_ssl SSLSessionTickets -- others vulnerable? Reed Loden (Feb 04)
- Re: Apache 2.4 mod_ssl SSLSessionTickets -- others vulnerable? Mark Felder (Feb 04)
- Re: Apache 2.4 mod_ssl SSLSessionTickets -- others vulnerable? Florent Daigniere (Feb 04)
- Re: Apache 2.4 mod_ssl SSLSessionTickets -- others vulnerable? Mark Felder (Feb 04)
- Re: Apache 2.4 mod_ssl SSLSessionTickets -- others vulnerable? Florent Daigniere (Feb 04)
- Re: Apache 2.4 mod_ssl SSLSessionTickets -- others vulnerable? Michael Samuel (Feb 04)