> Never ship a Shared OpenSSL library. Anyone can rebuild it to output > the socket buffer to disk prior to encryption and replace yours. > > :-)
A party to an encrypted conversation can put its contents in a full-page ad in the New York Times if they want to. There's no need to keep a conversation secret from its own parties. The two ends of the OpenSSL encryption engine are controlled by the same party. DS ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
