Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
mikeash
on Feb 25, 2014
|
parent
|
context
|
favorite
| on:
Has goto fail been fixed yet?
No need to MITM anything. You can just patch the binaries on disk. People have already done the legwork for it:
http://www.sektioneins.de/en/blog/14-02-22-Apple-SSL-BUG.htm...
aroch
on Feb 25, 2014
|
next
[–]
I enjoy that they're serving the patch over HTTP with no signatures or anything. So their patch may be just as useless or maybe make things even worse due to MITM
mikeash
on Feb 25, 2014
|
parent
|
next
[–]
And they go out of their way to give you a version that's all scripted up for you so you can apply it without knowing what's going on!
wyuenho
on Feb 25, 2014
|
prev
[–]
I tried it. Didn't work.
Consider applying for YC's Fall 2025 batch! Applications are open till Aug 4
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
