From mboxrd@z Thu Jan 1 00:00:00 1970 X-Spam-Checker-Version: SpamAssassin 3.4.4 (2020-01-24) on inbox.vuxu.org X-Spam-Level: X-Spam-Status: No, score=-0.9 required=5.0 tests=DKIM_SIGNED,DKIM_VALID, MAILING_LIST_MULTI,RCVD_IN_DNSWL_NONE,RCVD_IN_MSPIKE_H2,URIBL_CSS autolearn=ham autolearn_force=no version=3.4.4 Received: (qmail 21733 invoked from network); 22 Oct 2021 23:43:34 -0000 Received: from tb-ob0.topicbox.com (64.147.108.117) by inbox.vuxu.org with ESMTPUTF8; 22 Oct 2021 23:43:34 -0000 Received: from tb-mx0.topicbox.com (tb-mx0.nyi.icgroup.com [10.90.30.73]) by tb-ob0.topicbox.com (Postfix) with ESMTP id 391A12006E for ; Fri, 22 Oct 2021 19:43:31 -0400 (EDT) (envelope-from bounce.mMd4aba3c3b058795195e54f3d.r522be890-2105-11eb-b15e-8d699134e1fa@9fans.bounce.topicbox.com) Received: by tb-mx0.topicbox.com (Postfix, from userid 1132) id 3679B1FB08C; Fri, 22 Oct 2021 19:43:31 -0400 (EDT) ARC-Authentication-Results: i=2; topicbox.com; arc=pass; dkim=none (no signatures found); dmarc=pass policy.published-domain-policy=none policy.applied-disposition=none policy.evaluated-disposition=none (p=none,d=none,d.eval=none) policy.policy-from=p header.from=eigenstate.org; spf=pass smtp.mailfrom=ori@eigenstate.org smtp.helo=mimir.eigenstate.org; x-internal-arc=fail (as.1.topicbox.com=pass, ams.1.topicbox.com=fail (message has been altered)) (Message modified while forwarding at Topicbox) ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d= topicbox.com; h=message-id:to:date:from:mime-version :content-type:content-transfer-encoding:list-help:list-id :list-post:list-subscribe:reply-to:subject:list-unsubscribe; s= sysmsg-1; t=1634946211; bh=LXOEUEhhLHhjRcXcKeFzpATw1QWiQedzenJg6 l06oFA=; b=EKu4FGuSGDO/ivPFQGvhNHpcFFjcu0r4jz7MH/cXnYAQS7WXQXvod RwihHcdQnfU5oMQslz8BlnTSJrWRJQsPPF8k7TKdNNYzSLVQWCPeFgvRzFbzI6Nz zhYTvJwrc61BmCi6EAWs7PeLTLf+bgQSB5kOlpW+F51h+KOKdIX8zE= ARC-Seal: i=2; a=rsa-sha256; cv=pass; d=topicbox.com; s=sysmsg-1; t= 1634946211; b=OzJKIthqU++glAIluvP6koYl2Tm5TNLH7gPht9l8mXh6LbFG72 aJ0rDrW1rb+5kviQ9Mr4pKLBCMYUGk9Ipr1mPUf0y6RUwSMm9HCJqsQ9hhqkl74G w6eCga8d6/MFjCCzZ7mUtDoYhVW05hK6tgoJpQ/7/TEwYJuQJ2Vtfg1S0= Authentication-Results: topicbox.com; arc=pass; dkim=none (no signatures found); dmarc=pass policy.published-domain-policy=none policy.applied-disposition=none policy.evaluated-disposition=none (p=none,d=none,d.eval=none) policy.policy-from=p header.from=eigenstate.org; spf=pass smtp.mailfrom=ori@eigenstate.org smtp.helo=mimir.eigenstate.org; x-internal-arc=fail (as.1.topicbox.com=pass, ams.1.topicbox.com=fail (message has been altered)) (Message modified while forwarding at Topicbox) X-Received-Authentication-Results: tb-mx0.topicbox.com; arc=none (no signatures found); bimi=skipped (DMARC Policy is not at enforcement); dkim=none (no signatures found); dmarc=pass policy.published-domain-policy=none policy.applied-disposition=none policy.evaluated-disposition=none (p=none,d=none,d.eval=none) policy.policy-from=p header.from=eigenstate.org; iprev=pass smtp.remote-ip=206.124.132.107 (mimir.eigenstate.org); spf=pass smtp.mailfrom=ori@eigenstate.org smtp.helo=mimir.eigenstate.org; x-aligned-from=pass (Address match); x-me-sender=none; x-ptr=pass smtp.helo=mimir.eigenstate.org policy.ptr=mimir.eigenstate.org; x-return-mx=pass header.domain=eigenstate.org policy.is_org=yes (MX Records found: nokogiri.pikopiko.org,mail.pikopiko.org,kusuri.pikopiko.org,eigenstate.org); x-return-mx=pass smtp.domain=eigenstate.org policy.is_org=yes (MX Records found: nokogiri.pikopiko.org,mail.pikopiko.org,kusuri.pikopiko.org,eigenstate.org); x-tls=pass smtp.version=TLSv1.2 smtp.cipher=ECDHE-RSA-AES256-GCM-SHA384 smtp.bits=256/256; x-vs=clean score=0 state=0 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed; d=9fans.net; h=message-id :to:date:from:mime-version:content-type :content-transfer-encoding:list-help:list-id:list-post :list-subscribe:reply-to:subject:list-unsubscribe; s=dkim-1; bh= nWL8NVHiMANUEzSev+qj6lVdYvMe/tvU3TCgTaQuqeE=; b=ZeRQgS1FuiukTavI MUVaMtJ0Tr4AuEe/xO9rRRHmHIlFhi4PQfJKiE57BwIeS1hWNLLskMKQpaUPx67g bVPJQbrjJSdeR+xq/SqdO0KlJqqrLv/axr9IMPRbZLKNepCHDOGVQ9z+w1geVbVk HphKV43g07wQAOt4MTizLZFoTCM= Received: from tb-mx0.topicbox.com (localhost.local [127.0.0.1]) by tb-mx0.topicbox.com (Postfix) with ESMTP id 7588E1FAC88 for <9fans@9fans.net>; Fri, 22 Oct 2021 19:43:20 -0400 (EDT) (envelope-from ori@eigenstate.org) Received: from tb-mx0.topicbox.com (localhost [127.0.0.1]) by tb-mx0.topicbox.com (Authentication Milter) with ESMTP id B80D7FFC322; Fri, 22 Oct 2021 19:43:20 -0400 ARC-Seal: i=1; a=rsa-sha256; cv=none; d=topicbox.com; s=arcseal; t= 1634946200; b=AdkalsgmnnITBi5CAxFTG6YZmH/kVTBaQXPKy5x97jdK+JMhZc xlQZoFzjUdNBNZ2z16qZuqqxtIlkhnVfOlfozhjlQh0v1LXIUivD5YLqr4/SXPgT 92HENCqaM8xtSb7x9Ir93Bp3nv18O+vBJlJANEaPQ6mz6HSZ4562EbzuWslgaVfo 7aCB0gL31aKEQDFPxHx7uLvIuf+V8qWqJU3iZBOwC6PQD0Z3GPVo1vjo4cpgc5XK 374QUtYrRjJ7WB3RvRQXHCc6tmQcZtWLIaCLrpkAvYQt6ECJdpuGNbXR0Jc1duHB VenWHksrt1EPxxwp0nLdg1v81WFXrGypDNZg== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d= topicbox.com; h=message-id:to:subject:date:from:mime-version :content-type:content-transfer-encoding; s=arcseal; t= 1634946200; bh=zvst1qozBxeEcn6qP82Z25C/Y9LLlJJMgd/6tZFbs1Q=; b=h Trwt1Ytp3vNE3fdr2Jc4ltqkDIjjnRQ93ktP7JJG10KsoCaoj4+8svBVxN0YxG72 jUVPYa4PH75JJpzgoLdRdRnud43z3518URoeJQodsF5jGn50T13YEH5sTi4UC2ol ccJQWdfMN3mHhQb1acogAJ2PzBGS9NL4hmkBrzgjjnidjNlMrMvTU7AfizIv+nOO IbL6Se0epe7aQU0edRKMS5E5GUxsde/9IaL2rthzOc+WruB0v2eZ3U/g6dARSgUf Pf6x5opzOmNx6J1RE8MvS4dO7sIWTThtxiqNtl7W/3MyE7IhmF+pi6K0jb0uPS04 UyuJTV7iLOqtcqSPRrJlA== ARC-Authentication-Results: i=1; tb-mx0.topicbox.com; arc=none (no signatures found); bimi=skipped (DMARC Policy is not at enforcement); dkim=none (no signatures found); dmarc=pass policy.published-domain-policy=none policy.applied-disposition=none policy.evaluated-disposition=none (p=none,d=none,d.eval=none) policy.policy-from=p header.from=eigenstate.org; iprev=pass smtp.remote-ip=206.124.132.107 (mimir.eigenstate.org); spf=pass smtp.mailfrom=ori@eigenstate.org smtp.helo=mimir.eigenstate.org; x-aligned-from=pass (Address match); x-me-sender=none; x-ptr=pass smtp.helo=mimir.eigenstate.org policy.ptr=mimir.eigenstate.org; x-return-mx=pass header.domain=eigenstate.org policy.is_org=yes (MX Records found: nokogiri.pikopiko.org,mail.pikopiko.org,kusuri.pikopiko.org,eigenstate.org); x-return-mx=pass smtp.domain=eigenstate.org policy.is_org=yes (MX Records found: nokogiri.pikopiko.org,mail.pikopiko.org,kusuri.pikopiko.org,eigenstate.org); x-tls=pass smtp.version=TLSv1.2 smtp.cipher=ECDHE-RSA-AES256-GCM-SHA384 smtp.bits=256/256; x-vs=clean score=0 state=0 X-ME-VSCause: gggruggvucftvghtrhhoucdtuddrgedvtddrvddvledgudekucdltddurdegudelrddttd dmucetufdoteggodetrfdotffvucfrrhhofhhilhgvmecuhfgrshhtofgrihhlpdggtfgf nhhsuhgsshgtrhhisggvpdfurfetoffkrfgpnffqhgenuceurghilhhouhhtmecufedttd enucenucfjughrpefkvffufffhgggtgfesthejjedttddtvdenucfhrhhomhepohhrihes vghighgvnhhsthgrthgvrdhorhhgnecuggftrfgrthhtvghrnhepleeiteehieetfeevff duvdelgfffgeffvdevleelgfeliefhhfdvtdfhteeikefhnecukfhppedvtdeirdduvdeg rddufedvrddutdejpdejgedruddtkedrheeirddvvdehnecuvehluhhsthgvrhfuihiivg eptdenucfrrghrrghmpehinhgvthepvddtiedruddvgedrudefvddruddtjedphhgvlhho pehmihhmihhrrdgvihhgvghnshhtrghtvgdrohhrghdpmhgrihhlfhhrohhmpeeoohhrih esvghighgvnhhsthgrthgvrdhorhhgqe X-ME-VSScore: 0 X-ME-VSCategory: clean Received-SPF: pass (eigenstate.org: 206.124.132.107 is authorized to use 'ori@eigenstate.org' in 'mfrom' identity (mechanism 'mx' matched)) receiver=tb-mx0.topicbox.com; identity=mailfrom; envelope-from="ori@eigenstate.org"; helo=mimir.eigenstate.org; client-ip=206.124.132.107 Received: from mimir.eigenstate.org (mimir.eigenstate.org [206.124.132.107]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by tb-mx0.topicbox.com (Postfix) with ESMTPS for <9fans@9fans.net>; Fri, 22 Oct 2021 19:43:18 -0400 (EDT) (envelope-from ori@eigenstate.org) Received: from abbatoir.myfiosgateway.com (pool-74-108-56-225.nycmny.fios.verizon.net [74.108.56.225]) by mimir.eigenstate.org (OpenSMTPD) with ESMTPSA id 2258e9ed (TLSv1.2:ECDHE-RSA-AES256-SHA:256:NO) for <9fans@9fans.net>; Fri, 22 Oct 2021 16:43:17 -0700 (PDT) Message-ID: <8B3ADC2544348BBAA8EFB0A66615C430@eigenstate.org> To: 9fans@9fans.net Date: Fri, 22 Oct 2021 19:43:15 -0400 From: ori@eigenstate.org MIME-Version: 1.0 Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable Topicbox-Policy-Reasoning: allow: sender is a member Topicbox-Message-UUID: d9666d0e-3391-11ec-90c0-dc5e799a772a Archived-At: =?UTF-8?B?PGh0dHBzOi8vOWZhbnMudG9waWNib3guY29tL2dyb3Vwcy85?= =?UTF-8?B?ZmFucy9UNDU1ODdhMjJiYjMxNzI0My1NZDRhYmEzYzNiMDU4Nzk1MTk1ZTU0?= =?UTF-8?B?ZjNkPg==?= List-Help: List-Id: "9fans" <9fans.9fans.net> List-Post: List-Software: Topicbox v0 List-Subscribe: Precedence: list Reply-To: 9fans <9fans@9fans.net> Subject: [9fans] intent to delete: devssl, cpu, oexportfs, import List-Unsubscribe: , Topicbox-Delivery-ID: 2:9fans:437d30aa-c441-11e9-8a57-d036212d11b0:522be890-2105-11eb-b15e-8d699134e1fa:Md4aba3c3b058795195e54f3d:1:xb3plH-xcRK9b1bWP3ADSwREvScYHrlD7A-zeNF8zi4 SSL 3.0 is implemented by devssl. It has been broken since the POODLE and BEAST attacks in 2014. However: it's hard-coded in cpu(1), oexportfs(4), and import(4) via a call to pushssl(). I don't think it's possible to upgrade them and keep the the protocol compatible. To use a working version of the TLS protocol, there's going to have to be a clean break. The SSL and TLS record formats seem incompatible, and there's no version negotiation in cpu. 9front already deprecated cpu/import, with rcpu and rimport as replacements, so this only affects 9legacy to 9front communication. It'd be nice to keep things interoperable without patching. Is there a path forward that doesn't leave us dragging along a broken, obsolete SSL version forever? ------------------------------------------ 9fans: 9fans Permalink: https://9fans.topicbox.com/groups/9fans/T45587a22bb317243-Md4aba= 3c3b058795195e54f3d Delivery options: https://9fans.topicbox.com/groups/9fans/subscription