On Wed, Dec 13, 2006 at 08:45:50PM +0100, Marek Marcola wrote:
> Hello,
> > H = HMAC(packet_proto+ssl_version+data_len+M, server_write_mac)
> Should be:
> H = HMAC(packet_sequence+packet_proto+ssl_version+data_len+M,
> server_write_mac)
>
Marek,
You forgot to mention that HMAC has a secret key associated with it so
that you cannot forge MD5 or SHA1 digests.
This is done by simply appending the key to the digest input.
regards,
Girish
--
Linux is for folks who hate Windoze.
FreeBSD is for folks who love UNIX.
OpenBSD is for folks who can't live without UNIX.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager [EMAIL PROTECTED]
