[sr-dev] OpenSSL PRNG vulnerability in kamailo
Vadim Lebedev
vadim at mbdsys.com
Wed Sep 4 16:30:57 CEST 2013
Hello,
I think that kamailio could be prone to the same OpenSSL PRNG
initalization problem as Android OS
(
http://emboss.github.io/blog/2013/08/21/openssl-prng-is-not-really-fork-safe/)
related to the fact that all kmaillio child processes are inheriting
PRNG state of the parent process.
Thanks
Vadim
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.sip-router.org/pipermail/sr-dev/attachments/20130904/5b135f7e/attachment.html>
More information about the sr-dev
mailing list