DH Exchange algorithm has to be negotiated in the SSL handshake . I was
assuming that DH has to be implemented out side the SSL. I am wrong
I had implemented complete with SSL from starch .As .Net SSL stream don't
support Diffie Hellman and it worked i am able to communicated with DH Open
SSL cl
Now i understood the concept .. Till now i am assuming that attacker will
send only the heart beat request with out performing any SSL handshake
messages.
I was wrong . Attacker will establish a new connection and send all the
handshake messages and then the faked heart beat request .
-
In my scenario if the client don't respond for heart beat request then my
client is safer ?
--
View this message in context:
http://openssl.6102.n7.nabble.com/Heart-bleed-with-0-9-8-and-1-0-1-tp49300p49402.html
Sent from the OpenSSL - User mailing list archive at Nabble.com.
_
day, April 13, 2014, Jin Jiang [via OpenSSL] <
ml-node+s6102n49373...@n7.nabble.com> wrote:
> Hi,
> I think your client is vulnerable, if the attacker can touch your client.
>
> Regards,
> Jin
>
>
> On Fri, Apr 11, 2014 at 5:32 PM, cvishnuid <[hidden
> email]<h
HiI am having 0.9.8 open ssl libraries in my server and 1.0.1 in my client.Am
I venerable to heart bleed attach?Regards,Vishnu.
--
View this message in context:
http://openssl.6102.n7.nabble.com/Heart-bleed-with-0-9-8-and-1-0-1-tp49300.html
Sent from the OpenSSL - User mailing list archive at N
May i know the packet structure openssl uses for exchanging public parameters
--
View this message in context:
http://openssl.6102.n7.nabble.com/Diffie-hellman-Open-SSL-Client-and-C-Server-tp47524p48157.html
Sent from the OpenSSL - User mailing list archive at Nabble.com.
_
Thanks for reply matt.Yeah your correct I want implement completely from
starch as my agenda is to have complete manged code in my server app and i
did't find any manged manged crypto library with will is compatable with
Open SSL Client. Client will still remain using with Open SSL libraries
.There
I am newbie to Open SSL . I am already have an application where server and
client are using Openssl libraries for Diffie hellman encryption.I wanna
convert server to compleatly to C# .
I have .pem file in both server and client so i assume we have same DH
parameters (g and p) in client and
