1. 19 Jan, 2015 1 commit
  2. 16 Jan, 2015 8 commits
  3. 14 Jan, 2015 2 commits
  4. 06 Sep, 2013 3 commits
  5. 05 Sep, 2013 2 commits
  6. 04 Sep, 2013 2 commits
  7. 02 Sep, 2013 19 commits
  8. 25 Oct, 2012 2 commits
  9. 22 Oct, 2012 1 commit
    • Linus Nordberg's avatar
      Don't mix up pre- and post-handshake verification of DTLS clients. · 3682c935
      Linus Nordberg authored
      Commit db965c9b addressed TLS clients only.
      
      When verifying DTLS clients, don't consider config blocks with CA
      settings ('tls') which differ from the one used for verifying the
      certificate chain.
      
      Original issue reported and analysed by Ralf Paffrath. DTLS being
      vulnerable reported by Raphael Geisser.
      
      Addresses issue RADSECPROXY-43, CVE-2012-4523.
      3682c935