rbsec
rbsec
@ThunderSon that list looks good, and there's quite a bit of overlap with what I'd been thinking about - although attacks against SMS are probably a bit outside of the...
I've pushed an initial draft of this in #971 - any comments and feedback on the content are welcome (I've not done a proper QA, so spelling/grammar/etc can wait).
This has been merged in #971.
`::1` is correct for the SNI name, as it's the IPv6 address of the system that you're connecting to. Just sending `1` as an SNI name wouldn't be correct unless...
@strongBurger I've tagged a new release as 2.1.2 with the fixes for this included, so hopefully that'll work for you. @jtesta fantastic as always. You don't see many systems around...
@jtesta fantastic work investigating and fixing this as always. It's amazing how many dodgy TLS implementations there out there, and the amount of hacky code needed to work around them......
TBH, I've only ever cross-compiled it from Linux, as my main system doesn't have VS (or Windows) installed. If someone wants to look into getting it to work with more...
Interesting that the server is detecting and rejecting this - which I suppose is fairly sensible behaviour on their part. Thanks as always.
The word "required" seems to have a fairly loose meaning to most of the people who write TLS stacks. As does the word "standard"...
You should be able to compile it using `make static` on RHEL based distros as long as you have the required dependencies installed (whatever the distros equivalents of `build-essential git...