kfreds

↗ HN profile [ 54.6 ms ] full profile
Karma
0
Created
()
Submissions
0
  1. OpenVPN servers are vulnerable to Shellshock under certain configurations. OpenVPN has a number of configuration options that can call custom commands during different stages of the tunnel session. Many of these…

  2. Hi HN, We have successfully extracted private key material multiple times from an OpenVPN server by exploiting the Heartbleed Bug. The material we found was sufficient for us to recreate the private key and impersonate…

  3. I'm especially interested in things we should be doing but aren't. For some additional technical details specifically related to OpenVPN, and VPN services in general, see…

  4. Video: https://www.youtube.com/watch?v=VjzZPdQ_VV0 tl;dr: The lecture description says most of it. The only thing that hasn't been published before is how to do off-chain transactions with minimal trust. Off-chain…