Lese gerade diverse Vorschläge in Intelligenzbestien-Kanälen, dass wir in Deutschland ab sofort „ßh“ statt „ssh“ nutzen sollen. 😳
Openßl. ßID. Klingt gut.
Openßl. ßID. Klingt gut.
November 5, 2025 at 4:44 PM
Lese gerade diverse Vorschläge in Intelligenzbestien-Kanälen, dass wir in Deutschland ab sofort „ßh“ statt „ssh“ nutzen sollen. 😳
Openßl. ßID. Klingt gut.
Openßl. ßID. Klingt gut.
hey btw check out this peak embedded jank, this is how philips locks out the UART console in the full linux environment of the hue bridge v2.1's firmware
![#!/bin/sh
# Copyright (c) 2019 Signify Holding
. /lib/functions/secure-console.sh
DEV_KEY_FILE=/rom/home/swupdate/certs/RSA_dev_01_pub.pem
SECRET_PHRASE_FILE=/tmp/secret_phrase
PEM_FILE=/etc/secret-key.pub
print_encryption_method() {
method=`awk -F '$' '/^root:/{print $2}' /etc/shadow`
[ -n "$method" ] && echo "$method"
}
print_salt() {
salt=`awk -F '$' '/^root:/{print $3}' /etc/shadow`
[ -n "$salt" ] && echo "$salt"
}
verify_secret(){
# check if secret file exist, exit immediately if already in /tmp
[ -f "${SECRET_PHRASE_FILE}" ] && exit
# check PEM file, exit if file not found
[ ! -f "${PEM_FILE}" ] && exit
print_encryption_method
print_salt
# read secret from console
read -s secret
[ -n "$secret" ] && echo "$secret" | openssl base64 -d > "${SECRET_PHRASE_FILE}" || exit
BOOT_SECURITY_STRING=`fw_printenv -n security 2>/dev/null`
EUI64=`fw_printenv -n eui64 | awk '{print toupper($0)}')`
# check secret
result=$(echo "$EUI64 $BOOT_SECURITY_STRING" | openssl dgst -sha256 -verify ${PEM_FILE} -signature ${SECRET_PHRASE_FILE})
if [ "Verified OK" = "$result" ]; then
# check password
exec /bin/login
rm -f ${SECRET_PHRASE_FILE}
fi
}
if [ ! -f "${DEV_KEY_FILE}" ]; then
verify_secret
else
exec /bin/ash --login
fi](https://cdn.bsky.app/img/feed_thumbnail/plain/did:plc:3dq7pt3ueeedfxrpnpmeycvz/bafkreiftu742kbdxzxpatfhmnzqfrejk32glvwzmqyaib37oy6whqubvba@jpeg)
November 2, 2025 at 7:55 PM
hey btw check out this peak embedded jank, this is how philips locks out the UART console in the full linux environment of the hue bridge v2.1's firmware
J'ajoute que les anglo-américains, eux, ne disent quasiment jamais "octet" (dans mon /usr/include, je ne le trouve guère que dans les en-têtes OpenSSL et quelques en-têtes du noyau Linux). Bref, que ce soit en anglais ou en français, on a fini par fusionner les deux concepts.
October 24, 2025 at 8:06 AM
J'ajoute que les anglo-américains, eux, ne disent quasiment jamais "octet" (dans mon /usr/include, je ne le trouve guère que dans les en-têtes OpenSSL et quelques en-têtes du noyau Linux). Bref, que ce soit en anglais ou en français, on a fini par fusionner les deux concepts.
Like passing notes in class, learn to use OpenSSL to keep your secrets!
#OpenSSL #encryption #howto #cryptography #lsned #learnsomethingneweveryday
#OpenSSL #encryption #howto #cryptography #lsned #learnsomethingneweveryday
October 23, 2025 at 12:41 AM
Like passing notes in class, learn to use OpenSSL to keep your secrets!
#OpenSSL #encryption #howto #cryptography #lsned #learnsomethingneweveryday
#OpenSSL #encryption #howto #cryptography #lsned #learnsomethingneweveryday
Went apple picking today. You never know where you’ll find unpatched OpenSSL in the wild.
October 4, 2025 at 6:22 PM
Went apple picking today. You never know where you’ll find unpatched OpenSSL in the wild.
i love running into issues with openssl building with rust projects even when ive got it all setup locally, please use rustls pleaseeeeeee
October 3, 2025 at 3:38 PM
i love running into issues with openssl building with rust projects even when ive got it all setup locally, please use rustls pleaseeeeeee
openssl is the #1 reason i have to add a nix-shell to rust projects
October 3, 2025 at 3:47 PM
openssl is the #1 reason i have to add a nix-shell to rust projects
OpenSSL patches 3 vulnerabilities, urging immediate updates
OpenSSL patches 3 vulnerabilities, urging immediate updates
OpenSSL updates addressed 3 flaws enabling key recovery, code execution, and DoS attacks. Users are urged to update asap.
securityaffairs.com
October 1, 2025 at 9:28 PM
OpenSSL patches 3 vulnerabilities, urging immediate updates
#FireDaemon #OpenSSL 3.5.4 and 3.0.18 are available for download from www.firedaemon.com/download-fir.... These versions contain security fixes. Check the release notes: github.com/openssl/open...
#TLS #SSL #Cryptography #DigitalCertificates #PKI #Cybersecurity #Infosec #FreeSoftware #OpenSource
#TLS #SSL #Cryptography #DigitalCertificates #PKI #Cybersecurity #Infosec #FreeSoftware #OpenSource
Download FireDaemon OpenSSL Binaries for Microsoft Windows
Download free OpenSSL installers and binaries for Microsoft Windows. Latest digitally signed packages with command line tools and libraries from FireDaemon.
www.firedaemon.com
October 1, 2025 at 2:59 PM
#FireDaemon #OpenSSL 3.5.4 and 3.0.18 are available for download from www.firedaemon.com/download-fir.... These versions contain security fixes. Check the release notes: github.com/openssl/open...
#TLS #SSL #Cryptography #DigitalCertificates #PKI #Cybersecurity #Infosec #FreeSoftware #OpenSource
#TLS #SSL #Cryptography #DigitalCertificates #PKI #Cybersecurity #Infosec #FreeSoftware #OpenSource
Alpine's OpenSSL package version 3.5.3-r1 and greater now include the FIPS module as a subpackage. It is not installed by default, but can be installed via the `openssl-fips` subpackage.
You will need to do some minor manual configuration to enable the module, the package has a install message.
You will need to do some minor manual configuration to enable the module, the package has a install message.
September 23, 2025 at 9:15 PM
Alpine's OpenSSL package version 3.5.3-r1 and greater now include the FIPS module as a subpackage. It is not installed by default, but can be installed via the `openssl-fips` subpackage.
You will need to do some minor manual configuration to enable the module, the package has a install message.
You will need to do some minor manual configuration to enable the module, the package has a install message.
one-liners from plc research
dig +short plc.directory | xargs -I_ curl -s "https://ipinfo.io/_" | jq -r .hostname
echo | openssl s_client -showcerts -connect plc.directory:443 2>/dev/null | grep issuer=
curl -Is "plc.directory:80/foo" | grep Server
(plc runs on aws behind elb, tls 2048bit rsa)
dig +short plc.directory | xargs -I_ curl -s "https://ipinfo.io/_" | jq -r .hostname
echo | openssl s_client -showcerts -connect plc.directory:443 2>/dev/null | grep issuer=
curl -Is "plc.directory:80/foo" | grep Server
(plc runs on aws behind elb, tls 2048bit rsa)
September 17, 2025 at 6:54 PM
one-liners from plc research
dig +short plc.directory | xargs -I_ curl -s "https://ipinfo.io/_" | jq -r .hostname
echo | openssl s_client -showcerts -connect plc.directory:443 2>/dev/null | grep issuer=
curl -Is "plc.directory:80/foo" | grep Server
(plc runs on aws behind elb, tls 2048bit rsa)
dig +short plc.directory | xargs -I_ curl -s "https://ipinfo.io/_" | jq -r .hostname
echo | openssl s_client -showcerts -connect plc.directory:443 2>/dev/null | grep issuer=
curl -Is "plc.directory:80/foo" | grep Server
(plc runs on aws behind elb, tls 2048bit rsa)
OpenSSL dev team would like to have a chat.
February 1, 2025 at 7:41 AM
OpenSSL dev team would like to have a chat.
There was, there is and there will be no such a human being :-). I knew only a few of openssl, but for the others I had a couple of recipes in some text file.
October 29, 2024 at 11:55 AM
There was, there is and there will be no such a human being :-). I knew only a few of openssl, but for the others I had a couple of recipes in some text file.
OH: "openssl s_client more like openssl ass_client" harsh but fair
November 13, 2024 at 4:14 AM
OH: "openssl s_client more like openssl ass_client" harsh but fair
OpenSSL, Apache, Ngnix, PHP, ruby, python, gcc
March 5, 2025 at 12:06 AM
OpenSSL, Apache, Ngnix, PHP, ruby, python, gcc
Yesterday Google AI hallucinated an OpenSSL function that absolutely does not exist, and I hadn't even asked it to write code for me in the first place. It's not the most significant reason to finally ditch Google, but it's definitely a reason.
March 18, 2025 at 3:33 PM
Yesterday Google AI hallucinated an OpenSSL function that absolutely does not exist, and I hadn't even asked it to write code for me in the first place. It's not the most significant reason to finally ditch Google, but it's definitely a reason.
Master Kubernetes security with RBAC and Service Accounts
Learn how to authenticate and authorize users, create roles and role bindings, and use `kubectl` and OpenSSL for secure cluster management
➤ https://ku.bz/MptypDjN3
Learn how to authenticate and authorize users, create roles and role bindings, and use `kubectl` and OpenSSL for secure cluster management
➤ https://ku.bz/MptypDjN3
March 21, 2025 at 6:11 PM
Master Kubernetes security with RBAC and Service Accounts
Learn how to authenticate and authorize users, create roles and role bindings, and use `kubectl` and OpenSSL for secure cluster management
➤ https://ku.bz/MptypDjN3
Learn how to authenticate and authorize users, create roles and role bindings, and use `kubectl` and OpenSSL for secure cluster management
➤ https://ku.bz/MptypDjN3
@axemonkey I'm just guessing - would an openssl self-signed certificate work?
April 8, 2025 at 4:38 PM
@axemonkey I'm just guessing - would an openssl self-signed certificate work?
AL2023版クライアント「インストールエラーだよ」
AL2版クライアント「GLIBCのバージョン足らんよ」
AL2023版ライブラリ①「GLIBCのバージョン足らんよ」
AL2023版ライブラリ②「OpenSSLダウングレードしてね」
Web記事「Windowsで立てたよ!」「Windowsで立てたよ!」「Windowsで立てたよ!」
僕「これそもそもAL2023どころかLinux対応してない可能性ある…?え、そんなことある?マジ?」
AL2版クライアント「GLIBCのバージョン足らんよ」
AL2023版ライブラリ①「GLIBCのバージョン足らんよ」
AL2023版ライブラリ②「OpenSSLダウングレードしてね」
Web記事「Windowsで立てたよ!」「Windowsで立てたよ!」「Windowsで立てたよ!」
僕「これそもそもAL2023どころかLinux対応してない可能性ある…?え、そんなことある?マジ?」
March 6, 2025 at 8:42 AM
AL2023版クライアント「インストールエラーだよ」
AL2版クライアント「GLIBCのバージョン足らんよ」
AL2023版ライブラリ①「GLIBCのバージョン足らんよ」
AL2023版ライブラリ②「OpenSSLダウングレードしてね」
Web記事「Windowsで立てたよ!」「Windowsで立てたよ!」「Windowsで立てたよ!」
僕「これそもそもAL2023どころかLinux対応してない可能性ある…?え、そんなことある?マジ?」
AL2版クライアント「GLIBCのバージョン足らんよ」
AL2023版ライブラリ①「GLIBCのバージョン足らんよ」
AL2023版ライブラリ②「OpenSSLダウングレードしてね」
Web記事「Windowsで立てたよ!」「Windowsで立てたよ!」「Windowsで立てたよ!」
僕「これそもそもAL2023どころかLinux対応してない可能性ある…?え、そんなことある?マジ?」
JVN: OpenSSLのBN_mod_sqrt()における法が非素数のときに無限ループを引き起こす問題
OpenSSLのBN_mod_sqrt()には、法が非素数の場合、無限ループを引き起こす問題があります。
jvn.jp
February 26, 2024 at 9:40 AM
#OpenSSL 📢 -- Nominations Remain Open Until Wednesday, December 4, 2024 - Based on Your Feedback!
🔗 https://openssl-library.org/post/2024-11-27-nominations-remain-open/?utm_source=atom_feed
From #OpenSSL -- Blog on Library
🔗 https://openssl-library.org/post/2024-11-27-nominations-remain-open/?utm_source=atom_feed
From #OpenSSL -- Blog on Library
November 27, 2024 at 1:02 PM
#OpenSSL 📢 -- Nominations Remain Open Until Wednesday, December 4, 2024 - Based on Your Feedback!
🔗 https://openssl-library.org/post/2024-11-27-nominations-remain-open/?utm_source=atom_feed
From #OpenSSL -- Blog on Library
🔗 https://openssl-library.org/post/2024-11-27-nominations-remain-open/?utm_source=atom_feed
From #OpenSSL -- Blog on Library
One of the super cool things we do is determine the offsets of functions within libraries like OpenSSL for read and write operations. This way we can see content before it's been encrypted or after it's been decrypted.
github.com/qpoint-io/qt...
github.com/qpoint-io/qt...
github.com
April 23, 2025 at 1:53 PM
One of the super cool things we do is determine the offsets of functions within libraries like OpenSSL for read and write operations. This way we can see content before it's been encrypted or after it's been decrypted.
github.com/qpoint-io/qt...
github.com/qpoint-io/qt...