Amiga.org

Amiga News and Community Announcements => Amiga News and Community Announcements => Amiga Software News => Topic started by: pVC on February 22, 2014, 06:30:53 PM

Title: Amiga SSL Vulnerabilities
Post by: pVC on February 22, 2014, 06:30:53 PM

Harry "Piru" Sintonen reveals security issues on Amiga SSL implementations.
Critical vulnerabilities are found from IBrowse, SimpleMail and other programs.
 
Read more at https://sintonen.fi/advisories/amiga-ssl-vulnerabilities.txt (https://sintonen.fi/advisories/amiga-ssl-vulnerabilities.txt)

Title: Re: Amiga SSL Vulnerabilities
Post by: Matt_H on February 23, 2014, 03:19:13 AM

Not surprising, given the age of our software, but good to have a detailed list and hypothetical solutions.

And to think I still use (even older) MiamiSSL :crazy:
(Good thing I don't use my Amiga for anything requiring secure transmission anymore)

Title: Re: Amiga SSL Vulnerabilities
Post by: futaura on February 23, 2014, 10:59:05 AM

Specific advice for IBrowse 2.4 users: http://www.ibrowse-dev.net/news.php?id=1393094281

Title: Re: Amiga SSL Vulnerabilities
Post by: slaapliedje on May 22, 2014, 02:58:03 PM

So they mention IBrowse 2.5 in that post.  (And for the love of god, I hate Apple, I have now started typing it iBrowse before I catch myself.  I HATE YOU!)  

The real question is, when is IBrowse 2.5 going to be released, it's been 7 years since 2.4 came out.  I, and I'm sure a ton of other people, are looking forward to it.  

I know I've asked before about AWeb, since it's open source, but the response was "the code is a mess."  So I wonder how clean IBrowse is, and if they'd consider open sourcing it and allow the community to improve it.  

Granted, the Amiga classics aren't exactly made for massive browsing, but I think it should be capable for some simple stuff, Netsurf mostly proves that it's possible, it just doesn't feel 'native'.

slaapliedje