OpenSSL is written by monkeys posted April 2014

After messing around with this code for about a month I decided to write this up for the tubes in the hope that I can save some souls. I have come to the conclusion that OpenSSL is equivalent to monkeys throwing feces at the wall. It is, bar none, the worst library I have ever worked with. I can not believe that the internet is running on such a ridiculous complex and gratuitously stupid piece of code. Since circa 1998 the whole world has been trusting their secure communications to this impenetrable morass that calls itself the "OpenSSL" project. I bet that the doctors that work on that shitshow can not prescribe anything useful either!

worrying essay, read it here: https://www.peereboom.us/assl/assl/html/openssl.html

Well done! You've reached the end of my post. Now you can leave a comment or read something else.

Here are some random popular articles:

- Problems that UDP and only UDP has
- Zero'ing memory, compiler optimizations and memset_s
- KangarooTwelve
- Key Compromise Impersonation attacks (KCI)
- How to Backdoor Diffie-Hellman: quick explanation
- ASN.1 vs DER vs PEM vs x509 vs PKCS#7 vs ....
- QUIC Crypto and simple state machines

Here are some random recent articles:

- Two And A Half Coins episode 5: Bitcoin transactions, the Bitcoin script and UTXOs
- Are you into finding bugs and learning ZK? Here's a challenge for you
- Two And A Half Coins #8 - Consensus protocols, Bitcoin, Fastpay, and Linera with Mathieu Baudet
- What's happening in the round 5 of PlonK?
- An introduction to multi-party computation (videos)
- zksecurity.xyz
- A journey into zero-knowledge proofs

OpenSSL is written by monkeys posted April 2014

Comments

leave a comment...

OpenSSL is written by monkeys posted April 2014

Comments

leave a comment...

Subscribe to the mailing list