" #OpenSSL version 1.1.1w released
===============================

OpenSSL - The Open Source toolkit for SSL/TLS https://www.openssl.org/

The OpenSSL project team is pleased to announce the release of version 1.1.1w of our open source toolkit for SSL/TLS.

This is the last public release of OpenSSL 1.1.1. Extended support is available to premium support customers.

Release notes at:
https://www.openssl.org/news/openssl-1.1.1-notes.html

Downloads:
https://www.openssl.org/source/

ftp://ftp.openssl.org/source/

#security

Learn this #Nginx #TLS conjuration and be ranked among the most elite #cybersecurity warriors. #OpenSSL #OpenSource https://cromwell-intl.com/open-source/nginx-tls-1.3/security-performance-nginx.html?s=mc

Build your own secure realm, where the most powerful secret tongues are spoken. #TLS #OpenSSL #cybersecurity #Nginx #OpenSource https://cromwell-intl.com/open-source/nginx-tls-1.3/building-openssl-nginx.html?s=mc

#OpenSSL 3.1.2 is now available with bug and security fixes https://github.com/openssl/openssl/releases/tag/openssl-3.1.2

OpenSSL 3.0.10 and 1.1.1v are also out!

#OpenSource #Linux

Learn this #Nginx #TLS conjuration and be ranked among the most elite #cybersecurity warriors. #OpenSSL #OpenSource https://cromwell-intl.com/open-source/nginx-tls-1.3/security-performance-nginx.html?s=mc

Build your own secure realm, where the most powerful secret tongues are spoken. #TLS #OpenSSL #cybersecurity #Nginx #OpenSource https://cromwell-intl.com/open-source/nginx-tls-1.3/building-openssl-nginx.html?s=mc

W ramach zajęcia czymś uwagi, udało mi się rozkminić problemy na linii #OpenSSL — #PyPy 3.10. Okazało się, ze były to dwa problemy w implementacji hashlib:

1. PyPy nie kasuje błędu z OpenSSL po tym, jak pobieranie funkcji hashującej się nie powiedzie, oraz

2. PyPy nie ma mapowania dla funkcji SHA3, i próbuje pobierać je używając niewłaściwych nazw.

Myślę, że problem nr 1 może też dotyczyć CPythona, ale nie wiem, jak go odtworzyć.

https://github.com/pyca/cryptography/issues/9010#issuecomment-1582102954

#Python

Gdyby ktoś szukał wyzwania, przydałaby nam się pomoc w rozwikłaniu, dlaczego importowanie cryptography na #PyPy 3.10 powoduje pojawienie się błędów w #OpenSSL.

https://github.com/pyca/cryptography/issues/9010

#Python #RustLang #Gentoo

#OpenSSL 3.1.1, 3.0.9, and 1.1.1u are out now and include bug and security fixes!

#OpenSource #Linux #infosec

Learn this #Nginx #TLS conjuration and be ranked among the most elite #cybersecurity warriors. #OpenSSL #OpenSource https://cromwell-intl.com/open-source/nginx-tls-1.3/security-performance-nginx.html?s=mc

Build your own secure realm, where the most powerful secret tongues are spoken. #TLS #OpenSSL #cybersecurity #Nginx #OpenSource https://cromwell-intl.com/open-source/nginx-tls-1.3/building-openssl-nginx.html?s=mc

@mpoletiek @aral and also even if they commit any code that has "glowie aura" it would still face rigorious examination.

Cuz the people at #OpenSSL and #OpenSSH are very restrictive in adding stuff, which is why #DUAL_EC_DRBG, #Speck and other #Govware didn't make it into those...

Learn this #Nginx #TLS conjuration and be ranked among the most elite #cybersecurity warriors. #OpenSSL #OpenSource https://cromwell-intl.com/open-source/nginx-tls-1.3/security-performance-nginx.html?s=mc

Build your own secure realm, where the most powerful secret tongues are spoken. #TLS #OpenSSL #cybersecurity #Nginx #OpenSource https://cromwell-intl.com/open-source/nginx-tls-1.3/building-openssl-nginx.html?s=mc

📣 In a few hours #OpenSSL 3.1.0 will be officially released.

Check out the blog post to know more about what's new: https://www.openssl.org/blog/blog/2023/03/07/OpenSSL3.1Release/

📣 In a few hours #OpenSSL 3.1.0 will be officially released.

Check out the blog post to know more about what's new: https://www.openssl.org/blog/blog/2023/03/07/OpenSSL3.1Release/

This is one of these days when I really don't like being my own #CA.
I had to check how much mess did my Bash script with these metadata files #openssl produces. And was surprised when I saw nothing was broken. But obviously I found other "interesting" things in metadata.
Expired certs somewhere? Should I worry? This is not critical service (yet?), but it's in the internet. Something should be done.
As I am my own CA *I* have to do something with this, even if it's evening/night and I am tired. I feel I don't have enough energy/mental capacity for this :blobCat_tear:​
And for some reason when I looked at those metadata in file I felt... paralysed? Scared? Overwhelmed? It was strange and not pleasant.

Maaaaybe I wouldn't break anything if I try to do something...

#TLS #PKI #selhosting

Learn this #Nginx #TLS conjuration and be ranked among the most elite #cybersecurity warriors. #OpenSSL #OpenSource https://cromwell-intl.com/open-source/nginx-tls-1.3/security-performance-nginx.html?s=mc

Build your own secure realm, where the most powerful secret tongues are spoken. #TLS #OpenSSL #cybersecurity #Nginx #OpenSource https://cromwell-intl.com/open-source/nginx-tls-1.3/building-openssl-nginx.html?s=mc

Build your own secure realm, where the most powerful secret tongues are spoken. #TLS #OpenSSL #cybersecurity #Nginx #OpenSource https://cromwell-intl.com/open-source/nginx-tls-1.3/building-openssl-nginx.html?s=mc