This article seems to say that all major servers (Apache, Netscape, IIS)
are vulnerable to local attacks which read the private key from memory. It
goes on to say that you really need their $4,000 to $17,000 solution to
"vault" the keys. So it sounds like crap but I was wondering if anyone
with more knowledge about Apache, public key cryptography, and Linux memory
management would care to explain the degree of risk involved. I suppose
this has been an issue, if it is, for years and I've never heard of a
problem...
http://www.32bitsonline.com/news.php3?news=news/200001/nb200001139&page=1
-Alan
---
Alan D. Mead / Research Scientist / [EMAIL PROTECTED]
Institute for Personality and Ability Testing
1801 Woodfield Dr / Savoy IL 61874 USA
217-352-4739 (v) / 217-352-9674 (f)
--
To unsubscribe: mail [EMAIL PROTECTED] with "unsubscribe"
as the Subject.
