#OpenSSL

Nicola Tuveriromen@floss.social
2025-07-10

#OpenSSL πŸ“’ -- The OpenSSL Corporation Becomes Official General Partner of ZOO Brno’s Beringia Enclosure

πŸ”— openssl-corporation.org/post/2

From #OpenSSL -- Blog on OpenSSL Corporation

Nicola Tuveriromen@floss.social
2025-07-10

#OpenSSL πŸ“’ -- Contributors to the OpenSSL Library (June 2025)

πŸ”— openssl-library.org/post/2025-

From #OpenSSL -- Blog on OpenSSL Library

Nicola Tuveriromen@floss.social
2025-07-08

#OpenSSL πŸ“’ -- The Features of 3.5: EVP_SKEY

πŸ”— openssl-foundation.org/post/20

From #OpenSSL -- Blog on OpenSSL Foundation

Nicola Tuveriromen@floss.social
2025-07-07

#OpenSSL πŸ“’ -- The State of the OpenSSL Community (3.5)

πŸ”— openssl-foundation.org/post/20

From #OpenSSL -- Blog on OpenSSL Foundation

KielKontrovers Blogkielkontrovers@norden.social
2025-07-07

@nilz hatte schon befΓΌrchtet, dass der Podcast diese Vorurteile aufgreift. Diese Einzelentwickler*innen gibt es auch, aber ist nicht die Masse.OSS ist Big Business, problematisch sind manchmal kleine Projekte, die tatsΓ€chlich wichtig sind, aber zu wenig betreut, siehe auch #OpenSSL .Diese kleinen Projekte, die nicht essentiell sind, sind nicht so bedeutend oder problematisch, wenn was schief geht. Fehler gibt es ja auch bei closed source, das ist kein Alleinstellungsmerkmal.

Humberto Rochahumberto@rocha.social
2025-07-07

I've been playing around with certificates lately and wrote a small bit to remember some #OpenSSL commands https://humberto.io/bits/extract-certificate-from-a-domain/

Nicola Tuveriromen@floss.social
2025-07-03

#OpenSSL πŸ“’ -- There's still time to share your story

πŸ”— openssl-library.org/post/2025-

From #OpenSSL -- Blog on OpenSSL Library

Nicola Tuveriromen@floss.social
2025-07-03

#OpenSSL πŸ“’ -- There's still time to share your story

πŸ”— openssl-foundation.org/post/20

From #OpenSSL -- Blog on OpenSSL Foundation

2025-07-03

Version 5.21 of the open source encryption protocol AmiSSL has been released for AmigaOS 3 and 4, which is now based on the latest version 3.5.1 (2025/07/01) of OpenSSL.

amiga-news.de/en/news/AN-2025-

#Amiga #AmigaOS3 #AmigaOS4 #AmiSSL #OpenSSL

Neustradamus :xmpp: :linux:neustradamus
2025-07-03

3.5.1 () has been released ( / ) openssl-library.org/

Nicola Tuveriromen@floss.social
2025-07-02

#OpenSSL πŸ“’ -- Openssl Release Announcement for 3.5.1, 3.4.2, 3.3.4, 3.2.5, and 3.0.17

πŸ”— openssl-library.org/post/2025-

From #OpenSSL -- Blog on OpenSSL Library

2025-07-01

KEKS ΠΊΠΎΠ΄Π΅ΠΊ ΠΈ криптографичСскиС сообщСния

Данная ΡΡ‚Π°Ρ‚ΡŒΡ Π½Π°ΠΏΠΎΠΌΠΈΠ½Π°Π΅Ρ‚ ΠΎ ΠΏΡ€ΠΎΠ±Π»Π΅ΠΌΠ°Ρ… X.509 PKI ΠΈ Ρ€Π΅Π°Π»ΠΈΠ·Π°Ρ†ΠΈΠΉ ASN.1. ΠŸΡ€Π΅Π΄Π»Π°Π³Π°Π΅Ρ‚ ΠΊΠΎΠΌΠΏΠ°ΠΊΡ‚Π½Ρ‹ΠΉ, быстрый, Π΄Π΅Ρ‚Π΅Ρ€ΠΌΠΈΠ½ΠΈΡ€ΠΎΠ²Π°Π½Π½Ρ‹ΠΉ, ΠΏΠΎΡ‚ΠΎΠΊΠΎΠ²Ρ‹ΠΉ ΠΈ простой Ρ„ΠΎΡ€ΠΌΠ°Ρ‚ кодирования Π΄Π°Π½Π½Ρ‹Ρ… KEKS, Π° Ρ‚Π°ΠΊΠΆΠ΅ криптографичСскиС сообщСния для подписи ΠΈ ΡˆΠΈΡ„Ρ€ΠΎΠ²Π°Π½ΠΈΡ Π΄Π°Π½Π½Ρ‹Ρ… с ΠΏΠΎΠ΄Π΄Π΅Ρ€ΠΆΠΊΠΎΠΉ пост-ΠΊΠ²Π°Π½Ρ‚ΠΎΠ²Ρ‹Ρ… Π°Π»Π³ΠΎΡ€ΠΈΡ‚ΠΌΠΎΠ².

habr.com/ru/articles/923810/

#c #go #python #keks #asn1 #x509 #openssl #криптография #pqc #hpke #pgp #cms

Richard Levittelevitte@mastodon.nu
2025-06-30

@Viss @bagder
For some, it seems to work. My experience of bug bounties (through #openssl) has mostly been slop, even before AI entered the scene. @bagder has had a better experience, it seems.

Christoff, the humandeadbeef@oldbytes.space
2025-06-30

Decided to not use #libev and use #libevent instead for socket/timer/event loop/callback system. Other than I trust it more, I like the baked in #openssl support (will use for #telnet+tls later).

Additionally, going to try out sqlcipher (#sqlite3 + AES encryption baked in) for data storage. Everything will be stored in a sqlite3 database.

Using cmake and pkg-config, #C, sqlite3 (sqlcipher), libevent, and openssl.

Decided to just focus on developing the software on KDE neon distro (Ubuntu LTS) and worry about other OSes later. I spent too much time worrying about ease of build/install instructions for other operating systems instead of just deciding and moving forward.

#BBS #NecroNeonBBS #Vaporware

Felix Palmen :freebsd: :c64:zirias@bsd.cafe
2025-06-24

Just released: #swad 0.12 πŸ₯‚

swad is the "Simple Web Authentication Daemon". It basically offers adding form + #cookie #authentication to your reverse proxy (designed for and tested with #nginx "auth_request"). I created it mainly to defend against #malicious_bots, so among other credential checker modules for "real" logins, it offers a proof-of-work mechanism for guest logins doing the same #crypto #challenge known from #Anubis.

swad is written in pure #C with minimal dependencies (#zlib, #OpenSSL or compatible, and optionally #PAM), and designed to work on any #POSIX system. It compiles to a small binary (200 - 300 kiB depending on compiler and target platform).

This release brings (among a few bugfixes) improvements to make swad fit for "heavy load" scenarios: There's a new option to balance the load across multiple service worker threads, so all cores can be fully utilized if necessary, and it now keeps lots of transient objects in pools for reuse, which helps to avoid memory fragmentation and ultimately results in lower overall memory consumption.

Read more about it, download the .tar.xz, build and install it .... here:

github.com/Zirias/swad

Nicola Tuveriromen@floss.social
2025-06-23

#OpenSSL πŸ“’ -- OpenSSL Corporation at NYC Tech Week 2025: Advancing Security, Trust, and Open Innovation

πŸ”— openssl-corporation.org/post/2

From #OpenSSL -- Blog on OpenSSL Corporation

2025-06-23

I added OpenSSL encryption into script for NS exchange between servers with Pihole 6.

codeberg.org/reddy75/pinse

#linux #openssl #bash #script #encryption #exchange

daniel:// stenberg://bagder
2025-06-23

Would you say this is an accurate description of (some of the) forks family tree?

(These are the OpenSSL forks supports.)

A tree showing the development from SSLeay in 1995 to AmiSSL, LibreSSL, OpenSSL, quictls, BoringSSL and AWS-LC from 2023.
Felix Palmen :freebsd: :c64:zirias@bsd.cafe
2025-06-20

Oh boy, I have a lead! And it's NOT related to #TLS. I finally noticed another pattern: #swad only #crashed when running as a #daemon. The daemonizing wasn't the problem, but the default logging configuration attached to it: "fake async", by letting a #threadpool job do the logging.

Forcing THAT even when running in foreground, I can finally reproduce a crash. And I wouldn't be surprised if that was actually the reason for crashing "pretty quickly" with #LibreSSL (and only rarely with #OpenSSL), I mean, something going rogue in your address space can have the weirdest effects.

Client Info

Server: https://mastodon.social
Version: 2025.04
Repository: https://github.com/cyevgeniy/lmst