The vendors listed in the CERT advisory on the OpenSSL vulnerabilities are all producing server-side software: http://www.cert.org/advisories/CA-2002-23.html Does anyone know if Netscape, Opera, Internet Explorer or any of the other browsers are vulnerable to these issues? Thanks in advance -- Tina Bird "Wine is strong, the King is stronger, women are strongest, but TRUTH conquers all." ----- Inscription in the Rosslyn Chapel (near Edinburgh, Scotland) http://www.shmoo.com/~tbird Log Analysis http://www.counterpane.com/log-analysis.html VPN http://vpn.shmoo.com
