what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 76 - 100 of 100 RSS Feed

Files

crypto-gram-0102.txt
Posted Feb 16, 2001
Authored by Bruce Schneier, crypto-gram | Site counterpane.com

Crypto-gram for February 15, 2001. In this issue: Hard-Drive-Embedded Copy Protection, An Intentional Backdoor, The Doghouse: NASA and eTrue, A Semantic Attack on URLs, E-mail Filter Idiocy, Air Gaps, and Internet Voting vs. Large-Value e-Commerce.

tags | crypto, magazine
SHA-256 | b0b49966a2d150c0a44f721540654f4d81304aea8b42eaa28021ffddd0f33b1f

Related Files

Botan C++ Crypto Algorithms Library 1.10.0
Posted Jun 20, 2011
Site botan.randombit.net

Botan is a C++ library of cryptographic algorithms, including AES, DES, SHA-1, RSA, DSA, Diffie-Hellman, and many others. It also supports X.509 certificates and CRLs, and PKCS #10 certificate requests, and has a high level filter/pipe message processing system. The library is easily portable to most systems and compilers, and includes a substantial tutorial and API reference.

Changes: This release adds SSL/TLS (both client and server mode, up to TLS v1.1), the GOST 34.10-2001 signature scheme, the Keccak hash function, the XSalsa20 stream cipher, bcrypt password hashing, AES key wrapping, dynamically loaded engines, and a number of other features. New optimizations for AES, Serpent, ECDH, ECDSA, and SHA-2 are also included.
tags | library
systems | linux
SHA-256 | 82994e60f8543e2e639ab39fcb39f7bbb34f273279accf594fe73ae3c43cd693
Botan C++ Crypto Algorithms Library 1.9.18
Posted Jun 4, 2011
Site botan.randombit.net

Botan is a C++ library of cryptographic algorithms, including AES, DES, SHA-1, RSA, DSA, Diffie-Hellman, and many others. It also supports X.509 certificates and CRLs, and PKCS #10 certificate requests, and has a high level filter/pipe message processing system. The library is easily portable to most systems and compilers, and includes a substantial tutorial and API reference.

Changes: The SSL implementation can now be used with Visual C++ 2010's TR1 implementation. Numerous optimizations for the ECC algorithms provide 20 to 50% performance improvements. Some portability bugs affecting Solaris users were fixed, as were bugs that were triggered under the Visual C++ 2010 and Clang compilers. A bug that could cause denial of service to users verifying GOST 34.10 signatures was also fixed.
tags | library
systems | linux
SHA-256 | 4a3c94efc7660656109478c65e743f5ae24476b819bea142f1eb86d1b67dc0e9
Botan C++ Crypto Algorithms Library 1.9.17
Posted May 2, 2011
Site botan.randombit.net

Botan is a C++ library of cryptographic algorithms, including AES, DES, SHA-1, RSA, DSA, Diffie-Hellman, and many others. It also supports X.509 certificates and CRLs, and PKCS #10 certificate requests, and has a high level filter/pipe message processing system. The library is easily portable to most systems and compilers, and includes a substantial tutorial and API reference.

Changes: This release adds some new options for controlling use of Sphinx and Doxygen for generating documentation. A bug that broke runtime feature detection on x86 processors has been fixed. Support for the BeOS clone/continuation Haiku has been improved. This is the third and hopefully final release candidate for the next stable tree.
tags | library
systems | linux
SHA-256 | 8cfcaadd7c2fa3fbbc336cd0f9df387364f3db42933d4f085b39926cb2e0d2ae
Go Null Yourself E-Zine Issue 04
Posted Apr 18, 2011
Authored by gny | Site gonullyourself.org

Go Null Yourself E-zine Issue 4 - Topics in this issue include Lattice-Based Cryptography, The Tech Behind Credit Cards, MapReduce Part 2, 303-833-00xx Scan, and more.

tags | magazine
SHA-256 | 35eabf498921a3ff749db28d5d9622b428e8b2a603b121475303b55a264a85bc
Botan C++ Crypto Algorithms Library 1.9.16
Posted Apr 12, 2011
Site botan.randombit.net

Botan is a C++ library of cryptographic algorithms, including AES, DES, SHA-1, RSA, DSA, Diffie-Hellman, and many others. It also supports X.509 certificates and CRLs, and PKCS #10 certificate requests, and has a high level filter/pipe message processing system. The library is easily portable to most systems and compilers, and includes a substantial tutorial and API reference.

Changes: The documentation has been rewritten in reStructurered Text for use with the Sphinx documentation tool. The documentation has also been greatly expanded to cover new features in the latest releases.
tags | library
systems | linux
SHA-256 | 39c1811b939aa1d4969c052d5d39f995406603967eaccdd7c3c6152ffcff0561
Botan C++ Crypto Algorithms Library 1.9.15
Posted Mar 21, 2011
Site botan.randombit.net

Botan is a C++ library of cryptographic algorithms, including AES, DES, SHA-1, RSA, DSA, Diffie-Hellman, and many others. It also supports X.509 certificates and CRLs, and PKCS #10 certificate requests, and has a high level filter/pipe message processing system. The library is easily portable to most systems and compilers, and includes a substantial tutorial and API reference.

Changes: A modification to the SHA-2 message expansion results in a 5% to 20% performance improvement in SHA-256 and SHA-512 on x86-64. A bug that would cause a crash on OpenBSD on SPARC has been fixed. The build system is better at configuring for ARM builds. This is the first release candidate for the next stable branch.
tags | library
systems | linux
SHA-256 | 42515affc73f5c469a33af81dd25de7146d8ac9142dd6b95bd411920755f9c42
Mandriva Linux Security Advisory 2011-048
Posted Mar 18, 2011
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2011-048 - The MIT Kerberos 5 Key Distribution Center daemon is vulnerable to a double-free condition if the Public Key Cryptography for Initial Authentication capability is enabled, resulting in daemon crash or arbitrary code execution. The updated packages have been patched to correct this issue.

tags | advisory, arbitrary, code execution
systems | linux, mandriva
advisories | CVE-2011-0284
SHA-256 | 8f16e65acd90e46a20687b79671d9368ac8dab31b74ae57187de4029b78a1b7b
MIT krb5 Security Advisory 2011-003
Posted Mar 16, 2011
Site web.mit.edu

MIT krb5 Security Advisory 2011-003 - The MIT Kerberos 5 Key Distribution Center (KDC) daemon is vulnerable to a double-free condition if the Public Key Cryptography for Initial Authentication (PKINIT) capability is enabled, resulting in daemon crash or arbitrary code execution (which is believed to be difficult).

tags | advisory, arbitrary, code execution
advisories | CVE-2011-0284
SHA-256 | b0ca25ea27a1f31338f24d60a05c7d8d56f653b8316aaf2ac49d655c3abd9ae7
Ubuntu Security Notice USN-1088-1
Posted Mar 16, 2011
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1088-1 - Cameron Meadors discovered that the MIT Kerberos 5 Key Distribution Center (KDC) daemon is vulnerable to a double-free condition if the Public Key Cryptography for Initial Authentication (PKINIT) capability is enabled. This could allow a remote attacker to cause a denial of service.

tags | advisory, remote, denial of service
systems | linux, ubuntu
advisories | CVE-2011-0284
SHA-256 | eb748ff1ea1b858e0d288934566d4d38ddd39892f0b180a86f346cc403fd7926
Botan C++ Crypto Algorithms Library 1.9.14
Posted Mar 2, 2011
Site botan.randombit.net

Botan is a C++ library of cryptographic algorithms, including AES, DES, SHA-1, RSA, DSA, Diffie-Hellman, and many others. It also supports X.509 certificates and CRLs, and PKCS #10 certificate requests, and has a high level filter/pipe message processing system. The library is easily portable to most systems and compilers, and includes a substantial tutorial and API reference.

Changes: This release adds support for the bcrypt password hashing scheme and NIST's AES key wrap algorithm.
tags | library
systems | linux
SHA-256 | b495686d1ba68f7330ab2abc64ece39ce1963b370dea46da18238f51acfd8de5
MUNGE Uid 'N' Gid Emporium 0.5.10
Posted Feb 26, 2011
Authored by Chris Dunlap | Site code.google.com

MUNGE (MUNGE Uid 'N' Gid Emporium) is an authentication service for creating and validating credentials. It is designed to be highly scalable for use in an HPC cluster environment. It allows a process to authenticate the UID and GID of another local or remote process within a group of hosts having common users and groups. These hosts form a security realm that is defined by a shared cryptographic key. Clients within this security realm can create and validate credentials without the use of root privileges, reserved ports, or platform-specific methods.

Changes: The homepage was changed. A bug was fixed where munged could deadlock if clients blocked. A bug was fixed where munged could crash while processing supplementary groups. A bug was fixed with CFLAGS specified at configure-time nullifying the --enable-debug option. A bug was fixed with VPATH builds failing to install the init script. The RPM spec file was fixed for openSUSE and SLES.
tags | tool, remote, local, root
systems | unix
SHA-256 | 00e0125c2895877b555872647b0a98d13838a54acda78614bb6c6e70daadabc6
C++ Elliptic Curve Cryptography Library 0.14.0
Posted Feb 22, 2011
Site libecc.sourceforge.net

Libecc is a C++ elliptic curve cryptography library that supports fixed-size keys for maximum speed. The goal of this project is to become the first free Open Source library providing the means to generate safe elliptic curves, and to provide an important source of information for anyone with general interest in ECC.

Changes: An anti-aliasing bug was fixed, which is needed when compiling this library with g++ 4.4 or higher. asm clobber bugs were fixed for 32-bit assembly.
tags | library
systems | unix
SHA-256 | 17a214e35a5a633f9c56af83eb96ee5160646a056909756f3ceec28711398774
Ctunnel Cryptographic Tunnel Program 0.6
Posted Feb 14, 2011
Authored by Jess Mahan | Site nardcore.org

ctunnel is a program for tunneling and proxying TCP or UDP connections via a cryptographic tunnel. ctunnel can be used to secure any existing TCP or UDP based protocol, such as HTTP, Telnet, FTP, RSH, MySQL, VNC, DNS, XDMCP, NFS, etc. You can also chain or bounce connections to any number of intermediary hosts.

Changes: This release fixes high CPU utilization, lowers heap usage, and fixes a segfault.
tags | web, udp, encryption, tcp, protocol
systems | unix
SHA-256 | a07bb5f48987ec0cb01d01ae7eb2fc00a06a1928fa25afe3999ceb4398f0941a
LibPKI 0.6.3
Posted Feb 11, 2011
Site openca.org

The LibPKI Project is aimed to provide an easy-to-use PKI library for PKI-enabled application development. The library provides the developer with all the needed functionality to manage certificates, from generation to validation. It helps developers integrate X509 digital certificates into their applications, and implement complex cryptographic operations with a few simple function calls using a high-level cryptographic API. The library constitutes the core of other OpenCA Labs Projects like the PRQP Server, the OCSP Responder, and the OpenCA-NG PKI.

Changes: This release has extended support for ECDSA (via profile/keyParams in profile configuration files). It fixes linker issues on Solaris, adds a pki-cert command line tool, and fixes the ocsp library code.
tags | library
systems | unix
SHA-256 | 75da3bcbeb8515b3c9e34f104340a2fa1fbdc1c8b4d94840fdb89ff929abaa9a
OpenSSL Toolkit 1.0.0d
Posted Feb 10, 2011
Site openssl.org

OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.

Changes: Parsing of the OCSP stapling ClientHello extension was fixed. This issue was reported as CVE-2011-0014. A bug in string printing code, where the escape character itself was not escaped, was fixed.
tags | encryption, protocol
systems | unix
advisories | CVE-2011-0014
SHA-256 | 92511d1f0caaa298dba250426f8e7d5d00b271847886d1adc62422778d6320db
Pycryptopp 0.5.29
Posted Feb 2, 2011
Site tahoe-lafs.org

pycryptopp provides a few useful cryptography algorithms for Python programmers, based on the excellent Crypto++ library (which is written in C++).

Changes: Improved tests and packaging.
tags | crypto, python, library
systems | unix
SHA-256 | d504775b73d30fb05a3237f83c4e9e1ff3312cbba90a4a23e6cbb7d32219502b
Kismet Wireless Network Sniffer 2011-01-R1
Posted Jan 19, 2011
Authored by Mike Kershaw | Site kismetwireless.net

Kismet is an 802.11 layer 2 wireless network sniffer. It can sniff 802.11b, 802.11a, and 802.11g traffic. It is capable of sniffing using almost any wireless card supported in Linux, which currently divide into cards handled by libpcap and the Linux-Wireless extensions (such as Cisco Aironet), and cards supported by the Wlan-NG project which use the Prism/2 chipset (such as Linksys, Dlink, and Zoom). Besides Linux, Kismet also supports FreeBSD, OpenBSD and Mac OS X systems. Features Multiple packet capture sources, Runtime network sorting by AP MAC address (bssid), IP block detection via ARP and DHCP packet dissection, Cisco product detection via CDP, Ethereal and tcpdump compatible file logging, Airsnort-compatible "interesting" (cryptographically weak) logging, Secure SUID behavior, GPS devices and wireless devices fingerprinting. Kismet also includes a tool called gpsmap that can be used to create maps from logged GPS data.

Changes: GPS logging was added in PPI pcap files. A Ruby network API was added. Several Ruby clients were added, including a network card performance shootout tool. WPA migration mode detection was added. Initial minimal zigbee/802.15.4 plugin support was implemented. Packaging helper scripts were written. Per-capture source per-network signal tracking was added. 802.11d handling, client preferences, mac80211 card configuration, and XML logging were fixed.
tags | tool, wireless
systems | cisco, linux, unix, freebsd, openbsd, apple, osx
SHA-256 | 99e76f8f7684199b9176a7a2f6b1bb5c637d89f6906d6de279794fb1fb22cde1
OpenCT 0.6.20
Posted Jan 4, 2011
Site opensc-project.org

OpenCT implements driver and middle-ware for smart card readers. OpenCT drivers can be used via the ct-api interface, the ifdhandler interface, or its own interface/middle-ware. It implements drivers for several USB crypto tokens, USB smart card readers, serial smart card readers, and PCMCIA smart card readers.

Changes: The Rutoken S binary interfaces were modified. The Makefiles were fixed in the doc/ directory.
tags | crypto, library
systems | unix
SHA-256 | 6cd3e2933d29eb1f875c838ee58b8071fd61f0ec8ed5922a86c01c805d181a68
Botan C++ Crypto Algorithms Library 1.9.12
Posted Dec 14, 2010
Site botan.randombit.net

Botan is a C++ library of cryptographic algorithms, including AES, DES, SHA-1, RSA, DSA, Diffie-Hellman, and many others. It also supports X.509 certificates and CRLs, and PKCS #10 certificate requests, and has a high level filter/pipe message processing system. The library is easily portable to most systems and compilers, and includes a substantial tutorial and API reference.

Changes: Compilation problems in the Boost.Python wrapper and in the OpenSSL plugin were fixed. The Keccak hash function, one of the five finalists in the SHA-3 contest, was added.
tags | library
systems | linux
SHA-256 | af165a702f2f9a749b6f53a0287ef13aee87d7343cc261526623841775b5accf
OpenSSL Toolkit 1.0.0c
Posted Dec 7, 2010
Site openssl.org

OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.

Changes: An error was fixed in the experimental J-PAKE implementation, which could lead to successful validation by someone with no knowledge of the shared secret. This issue was reported as CVE-2010-4252. An old bug in a workaround that allowed malicious clients to modify the stored session cache ciphersuite was fixed. This issue was reported as CVE-2010-4180.
tags | encryption, protocol
systems | unix
advisories | CVE-2010-4252, CVE-2010-4180
SHA-256 | f731b36de3edaa361179ae6f449668b248a360e34e31e92902d976e9b9d604eb
Botan C++ Crypto Algorithms Library 1.9.11
Posted Nov 30, 2010
Site botan.randombit.net

Botan is a C++ library of cryptographic algorithms, including AES, DES, SHA-1, RSA, DSA, Diffie-Hellman, and many others. It also supports X.509 certificates and CRLs, and PKCS #10 certificate requests, and has a high level filter/pipe message processing system. The library is easily portable to most systems and compilers, and includes a substantial tutorial and API reference.

Changes: This release fixes a bug that prevented negotiating TLS connections using RC4. Bugs in CRL encoding and decoding were also fixed. New functions for hex and base64 encoding that do not require using a Pipe were added. The memory container types have changed in various ways to be more compatible with STL containers. The Skein implementation was updated to match the 1.3 specification. The dynamically loaded engine code now supports Windows as well as Unix.
tags | library
systems | linux
SHA-256 | 8abf104341b47019a8abedc009267bfbfe0c9b083640eac501448d7dc7e45eeb
LibPKI 0.6.0
Posted Nov 18, 2010
Site openca.org

The LibPKI Project is aimed to provide an easy-to-use PKI library for PKI-enabled application development. The library provides the developer with all the needed functionality to manage certificates, from generation to validation. It helps developers integrate X509 digital certificates into their applications, and implement complex cryptographic operations with a few simple function calls using a high-level cryptographic API. The library constitutes the core of other OpenCA Labs Projects like the PRQP Server, the OCSP Responder, and the OpenCA-NG PKI.

Changes: Support for IPv6 in network calls, fixes for URL parsing, and PKI_SSL_* interface enhancements.
tags | library
systems | unix
SHA-256 | 462408bdc01e8718198008a28270e15e8d655895eb901db07d5fd8cbd9f6f951
OpenSSL Toolkit 1.0.0b
Posted Nov 18, 2010
Site openssl.org

OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.

Changes: Fixed extension code to avoid race conditions which can result in a buffer overrun vulnerability.
tags | encryption, protocol
systems | unix
advisories | CVE-2010-3864
SHA-256 | 4e7b4e2fb33ee2d97c5e143561ab495dbbfc08f0a863e617a0c7adca19017331
Publimark Steganographic Tool 0.1.4
Posted Oct 28, 2010
Authored by Gaetan Le Guelvouit | Site perso.wanadoo.fr

Publimark is a command line tool to secretly embed text in an audio file. Like cryptography, it uses a pair of keys: the public one can be shared, whereas the private one must be kept secret. Anybody can send a steganographic message, but only the private key owner will be able read it. Marked audio files are still playable.

Changes: Publimark is now compatible with Botan 1.8 APIs. It also features a brand new and much more secure random generator.
tags | encryption, steganography
SHA-256 | 17577d506ae0ca6f3d1114800cf84b173cf629dc1d1c8991e832a2f18c695054
Mandriva Linux Security Advisory 2010-211
Posted Oct 22, 2010
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2010-211 - The SSL implementation in Mozilla Firefox before 3.5.14 and 3.6.x before 3.6.11, Thunderbird before 3.0.9 and 3.1.x before 3.1.5, and SeaMonkey before 2.0.9 does not properly set the minimum key length for Diffie-Hellman Ephemeral mode, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via a brute-force attack. Unspecified vulnerability in the browser engine in Mozilla Firefox 3.5.x before 3.5.14, Thunderbird before 3.0.9, and SeaMonkey before 2.0.9 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors. Various other issues have also been addressed.

tags | advisory, remote, denial of service, arbitrary
systems | linux, mandriva
advisories | CVE-2010-3173, CVE-2010-3174, CVE-2010-3175, CVE-2010-3176, CVE-2010-3178, CVE-2010-3179, CVE-2010-3180, CVE-2010-3182, CVE-2010-3183
SHA-256 | c4aa2dae679ba79e24b8322c372a70db3de31777d295bd7bdc83df4e576d061f
Page 4 of 4
Back1234Next

File Archive:

August 2022

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Aug 1st
    20 Files
  • 2
    Aug 2nd
    4 Files
  • 3
    Aug 3rd
    6 Files
  • 4
    Aug 4th
    55 Files
  • 5
    Aug 5th
    16 Files
  • 6
    Aug 6th
    0 Files
  • 7
    Aug 7th
    0 Files
  • 8
    Aug 8th
    13 Files
  • 9
    Aug 9th
    13 Files
  • 10
    Aug 10th
    0 Files
  • 11
    Aug 11th
    0 Files
  • 12
    Aug 12th
    0 Files
  • 13
    Aug 13th
    0 Files
  • 14
    Aug 14th
    0 Files
  • 15
    Aug 15th
    0 Files
  • 16
    Aug 16th
    0 Files
  • 17
    Aug 17th
    0 Files
  • 18
    Aug 18th
    0 Files
  • 19
    Aug 19th
    0 Files
  • 20
    Aug 20th
    0 Files
  • 21
    Aug 21st
    0 Files
  • 22
    Aug 22nd
    0 Files
  • 23
    Aug 23rd
    0 Files
  • 24
    Aug 24th
    0 Files
  • 25
    Aug 25th
    0 Files
  • 26
    Aug 26th
    0 Files
  • 27
    Aug 27th
    0 Files
  • 28
    Aug 28th
    0 Files
  • 29
    Aug 29th
    0 Files
  • 30
    Aug 30th
    0 Files
  • 31
    Aug 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Hosting By
Rokasec
close