HackerLangs
TopNewTrendsCommentsPastAskShowJobs

drazk

no profile record

comments

drazk
·il y a 2 ans·discuss
After reading the original post by Andres Freund, https://www.openwall.com/lists/oss-security/2024/03/29/4, his analysis indicates that the RSA_public_decrypt function is being redirected to the malware code. Since RSA_public_decrypt is only used in the context of RSA public key - private key authentication, can we reasonably conclude that the backdoor does not affect username-password authentication?