Archive for July, 2014

OpenSSL and LibreSSL PRNG, what’s different?

In July, a blog post from Andrew Ayer described the new, unsafe behaviour of portable LibreSSL 2.0.1. While it is right to say that it’s unsafe, it is still safer than baseline’s OpenSSL and portable LibreSSL 2.0.2. That’s what I’ll explain in this blog post. OpenSSL During March 2014, I released two CVE on OpenSSL […]