4 Mar
2014
4 Mar
'14
1:32 p.m.
Howard Chu wrote:
http://arstechnica.com/security/2014/03/critical-crypto-bug-leaves-linux-hun...
Perhaps folks will take us more seriously the next time we say "don't use GnuTLS" ... http://www.openldap.org/lists/openldap-devel/200802/msg00072.html
While I personally also prefer OpenSSL over GnUTLS it's not fair to blame developers if they publish a security issue themselves.
One never knows which issues are in other preferred software packages which the developers are not honest enough to talk about.
Ciao, Michael.