Message-ID:

"In the fight between you and the world, back the world." -- Frank Zappa

computers / comp.sys.tandem / Re: Update on OpenSSL 1.1.1

Update on OpenSSL 1.1.1

<a84449b7-51c4-4f86-a3ce-176bf573bdaen@googlegroups.com>

https://www.rocksolidbbs.com/computers/article-flat.php?id=542&group=comp.sys.tandem#542

X-Received: by 2002:a05:620a:955:b0:6be:74ee:c66c with SMTP id w21-20020a05620a095500b006be74eec66cmr18176234qkw.511.1662049126223;
Thu, 01 Sep 2022 09:18:46 -0700 (PDT)
X-Received: by 2002:a0d:d60e:0:b0:340:ae06:5599 with SMTP id
y14-20020a0dd60e000000b00340ae065599mr22984954ywd.199.1662049125930; Thu, 01
Sep 2022 09:18:45 -0700 (PDT)
Path: i2pn2.org!i2pn.org!usenet.blueworldhosting.com!feed1.usenet.blueworldhosting.com!peer02.iad!feed-me.highwinds-media.com!news.highwinds-media.com!news-out.google.com!nntp.google.com!postnews.google.com!google-groups.googlegroups.com!not-for-mail
Newsgroups: comp.sys.tandem
Date: Thu, 1 Sep 2022 09:18:45 -0700 (PDT)
Injection-Info: google-groups.googlegroups.com; posting-host=2607:fea8:3fa6:b400:c85f:992f:d3b5:6ad7;
posting-account=6VebZwoAAAAgrpUtsowyjrKRLNlqxnXo
NNTP-Posting-Host: 2607:fea8:3fa6:b400:c85f:992f:d3b5:6ad7
User-Agent: G2/1.0
MIME-Version: 1.0
Message-ID: <a84449b7-51c4-4f86-a3ce-176bf573bdaen@googlegroups.com>
Subject: Update on OpenSSL 1.1.1
From: rsbecker@nexbridge.com (Randall)
Injection-Date: Thu, 01 Sep 2022 16:18:46 +0000
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
X-Received-Bytes: 2269

by: Randall - Thu, 1 Sep 2022 16:18 UTC

For all those interested and as a reminder, on September 11, 2022, OpenSSL 1.1.1 goes out of full support and will move to security-bug-fix mode only. This means that fixes for 1.1.1 will only happen if they are security related, generally resulting from a discovered Critical Vulnerability and Exposure (CVE). There is no scheduled functional or operational patch for 1.1.1 before that date. In NonStop terms, this moves to the equivalent of Limited Support.

This decision was made by the OpenSSL team, not ITUGLIB, so please do not ask us to change this plan as it is not within our control. As the OpenSSL team puts out fixes, we will move as quickly as we can to get those fixes to our website.

If you have not done so, please consider moving to 3.0.x as soon as practical.

I would like to remind you that extended OpenSSL support for 1.0.2 is and 1..1.1 will be available for a fee. Connect has permitted me to run point on this type of support, and you can contact me here or through the nexbridge.com website.

Regards,
Randall Becker
On Behalf of The ITUGLIB Technical Committee and Nexbridge Inc. (the latter for extended support).

Re: Update on OpenSSL 1.1.1

<baccf1bc-4655-47e0-af33-9be346719ecen@googlegroups.com>

copy mid

https://www.rocksolidbbs.com/computers/article-flat.php?id=559&group=comp.sys.tandem#559

copy link Newsgroups: comp.sys.tandem

X-Received: by 2002:a05:622a:1014:b0:35c:e8ef:a406 with SMTP id d20-20020a05622a101400b0035ce8efa406mr1400817qte.306.1665081501444;
Thu, 06 Oct 2022 11:38:21 -0700 (PDT)
X-Received: by 2002:a0d:c285:0:b0:354:deb2:1aaa with SMTP id
e127-20020a0dc285000000b00354deb21aaamr1062946ywd.4.1665081501053; Thu, 06
Oct 2022 11:38:21 -0700 (PDT)
Path: i2pn2.org!i2pn.org!usenet.blueworldhosting.com!feed1.usenet.blueworldhosting.com!peer01.iad!feed-me.highwinds-media.com!news.highwinds-media.com!news-out.google.com!nntp.google.com!postnews.google.com!google-groups.googlegroups.com!not-for-mail
Newsgroups: comp.sys.tandem
Date: Thu, 6 Oct 2022 11:38:20 -0700 (PDT)
In-Reply-To: <a84449b7-51c4-4f86-a3ce-176bf573bdaen@googlegroups.com>
Injection-Info: google-groups.googlegroups.com; posting-host=2607:fea8:3fa6:b400:2da4:8ad6:d1f4:7691;
posting-account=6VebZwoAAAAgrpUtsowyjrKRLNlqxnXo
NNTP-Posting-Host: 2607:fea8:3fa6:b400:2da4:8ad6:d1f4:7691
References: <a84449b7-51c4-4f86-a3ce-176bf573bdaen@googlegroups.com>
User-Agent: G2/1.0
MIME-Version: 1.0
Message-ID: <baccf1bc-4655-47e0-af33-9be346719ecen@googlegroups.com>
Subject: Re: Update on OpenSSL 1.1.1
From: rsbecker@nexbridge.com (Randall)
Injection-Date: Thu, 06 Oct 2022 18:38:21 +0000
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
X-Received-Bytes: 2848

by: Randall - Thu, 6 Oct 2022 18:38 UTC

On Thursday, September 1, 2022 at 12:18:47 p.m. UTC-4, Randall wrote:
> For all those interested and as a reminder, on September 11, 2022, OpenSSL 1.1.1 goes out of full support and will move to security-bug-fix mode only. This means that fixes for 1.1.1 will only happen if they are security related, generally resulting from a discovered Critical Vulnerability and Exposure (CVE). There is no scheduled functional or operational patch for 1.1.1 before that date. In NonStop terms, this moves to the equivalent of Limited Support.
>
> This decision was made by the OpenSSL team, not ITUGLIB, so please do not ask us to change this plan as it is not within our control. As the OpenSSL team puts out fixes, we will move as quickly as we can to get those fixes to our website.
>
> If you have not done so, please consider moving to 3.0.x as soon as practical.
>
> I would like to remind you that extended OpenSSL support for 1.0.2 is and 1.1.1 will be available for a fee. Connect has permitted me to run point on this type of support, and you can contact me here or through the nexbridge.com website.
>
> Regards,
> Randall Becker
> On Behalf of The ITUGLIB Technical Committee and Nexbridge Inc. (the latter for extended support).

I was just notified that there will be one more non-security-related fix release coming next week for OpenSSL 1.1.1r. The 3.0.6 release, which is coming at the same time, will contain a security fix as well. ITUGLIB is planning on posting builds for both releases. More to follow in a separate thread..

Re: Update on OpenSSL 1.1.1

<b3c6a09b-153e-4a8d-8c17-b7c774537cabn@googlegroups.com>

copy mid

https://www.rocksolidbbs.com/computers/article-flat.php?id=577&group=comp.sys.tandem#577

copy link Newsgroups: comp.sys.tandem

X-Received: by 2002:a05:622a:15c8:b0:39c:ea8a:82e3 with SMTP id d8-20020a05622a15c800b0039cea8a82e3mr20058647qty.146.1667400755426;
Wed, 02 Nov 2022 07:52:35 -0700 (PDT)
X-Received: by 2002:a25:b003:0:b0:6cf:bdd4:ac72 with SMTP id
q3-20020a25b003000000b006cfbdd4ac72mr7864884ybf.645.1667400755109; Wed, 02
Nov 2022 07:52:35 -0700 (PDT)
Path: i2pn2.org!i2pn.org!usenet.blueworldhosting.com!feed1.usenet.blueworldhosting.com!peer02.iad!feed-me.highwinds-media.com!news.highwinds-media.com!news-out.google.com!nntp.google.com!postnews.google.com!google-groups.googlegroups.com!not-for-mail
Newsgroups: comp.sys.tandem
Date: Wed, 2 Nov 2022 07:52:34 -0700 (PDT)
In-Reply-To: <baccf1bc-4655-47e0-af33-9be346719ecen@googlegroups.com>
Injection-Info: google-groups.googlegroups.com; posting-host=2607:fea8:3fa6:b400:5817:850b:9343:6850;
posting-account=6VebZwoAAAAgrpUtsowyjrKRLNlqxnXo
NNTP-Posting-Host: 2607:fea8:3fa6:b400:5817:850b:9343:6850
References: <a84449b7-51c4-4f86-a3ce-176bf573bdaen@googlegroups.com> <baccf1bc-4655-47e0-af33-9be346719ecen@googlegroups.com>
User-Agent: G2/1.0
MIME-Version: 1.0
Message-ID: <b3c6a09b-153e-4a8d-8c17-b7c774537cabn@googlegroups.com>
Subject: Re: Update on OpenSSL 1.1.1
From: rsbecker@nexbridge.com (Randall)
Injection-Date: Wed, 02 Nov 2022 14:52:35 +0000
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
X-Received-Bytes: 3188

by: Randall - Wed, 2 Nov 2022 14:52 UTC

On Thursday, October 6, 2022 at 2:38:22 p.m. UTC-4, Randall wrote:
> On Thursday, September 1, 2022 at 12:18:47 p.m. UTC-4, Randall wrote:
> > For all those interested and as a reminder, on September 11, 2022, OpenSSL 1.1.1 goes out of full support and will move to security-bug-fix mode only. This means that fixes for 1.1.1 will only happen if they are security related, generally resulting from a discovered Critical Vulnerability and Exposure (CVE). There is no scheduled functional or operational patch for 1.1.1 before that date. In NonStop terms, this moves to the equivalent of Limited Support.
> >
> > This decision was made by the OpenSSL team, not ITUGLIB, so please do not ask us to change this plan as it is not within our control. As the OpenSSL team puts out fixes, we will move as quickly as we can to get those fixes to our website.
> >
> > If you have not done so, please consider moving to 3.0.x as soon as practical.
> >
> > I would like to remind you that extended OpenSSL support for 1.0.2 is and 1.1.1 will be available for a fee. Connect has permitted me to run point on this type of support, and you can contact me here or through the nexbridge.com website.
> >
> > Regards,
> > Randall Becker
> > On Behalf of The ITUGLIB Technical Committee and Nexbridge Inc. (the latter for extended support).
> I was just notified that there will be one more non-security-related fix release coming next week for OpenSSL 1.1.1r. The 3.0.6 release, which is coming at the same time, will contain a security fix as well. ITUGLIB is planning on posting builds for both releases. More to follow in a separate thread.

OpenSSL 3.0.7 and 1.1.1s build/test cycles currently in progress. 3.0.7 may hit the website today. 1.1.1s will take a bit longer as I have to port the fixes into the ITUGLIB fork.

Subject	Author
Update on OpenSSL 1.1.1	Randall
Re: Update on OpenSSL 1.1.1	Randall
Re: Update on OpenSSL 1.1.1	Randall