RE: why build shared openssl - Openssl

This is a discussion on RE: why build shared openssl - Openssl ; > Never ship a Shared OpenSSL library. Anyone can rebuild it to output > the socket buffer to disk prior to encryption and replace yours. > > :-) A party to an encrypted conversation can put its contents in a ...

+ Reply to Thread
Results 1 to 2 of 2

Thread: RE: why build shared openssl

  1. RE: why build shared openssl


    > Never ship a Shared OpenSSL library. Anyone can rebuild it to output
    > the socket buffer to disk prior to encryption and replace yours.
    >
    > :-)


    A party to an encrypted conversation can put its contents in a full-page ad
    in the New York Times if they want to. There's no need to keep a
    conversation secret from its own parties. The two ends of the OpenSSL
    encryption engine are controlled by the same party.

    DS


    __________________________________________________ ____________________
    OpenSSL Project http://www.openssl.org
    User Support Mailing List openssl-users@openssl.org
    Automated List Manager majordomo@openssl.org


  2. Re: why build shared openssl

    > > Never ship a Shared OpenSSL library. Anyone can rebuild it to output
    >
    > This risk model is not often realistic. If the administrator of the


    Yes, in terms of technically possible attacks, it makes no difference
    whether the OpenSSL library is static or dynamic. But in practice, it
    is easier for a malicious person with access to substitute a hacked
    OpenSSL library than to construct and substitute a hacked
    application. The very point made by Duchovni that you can easily
    update a dynamic library supports that, in fact. So you do get a
    little more practical security.

    The fact that you can update a dynamic library can count against you
    in other ways. I have had a customer switch OpenSSL shared libraries
    because they thought it would be good to update it for their other
    apps that were using it...

    It all depends on the context. But if you are delivering a product to
    customers I have found it best to link statically and then it's less
    likely for you to get into trouble.

+ Reply to Thread