Please create an account to participate in the Slashdot moderation system

 



Forgot your password?
typodupeerror
×
Security Bug Communications Encryption Open Source Software IT

Critical Bug In Libotr Opens Users of ChatSecure, Adium, Pidgin To Compromise (helpnetsecurity.com) 25

An anonymous reader writes with a report at HelpNet Security that A vulnerability in "libotr," the C code implementation of the Off-the-Record (OTR) protocol that is used in many secure instant messengers such as ChatSecure, Pidgin, Adium and Kopete, could be exploited by attackers to crash an app using libotr or execute remote code on the user's machine.
This discussion has been archived. No new comments can be posted.

Critical Bug In Libotr Opens Users of ChatSecure, Adium, Pidgin To Compromise

Comments Filter:
  • Curious (Score:2, Interesting)

    by campuscodi ( 4234297 )
    Does anyone still use these?
    • by Anonymous Coward

      Enlighten me, what should one be using to chat securely these days?

      • Sneakernet.
      • Enlighten me, what should one be using to chat securely these days?

        I'd probably use Threema, as it has a trust-no-one model in which the most secure level (of the three available) requires personally exchanging keys with the target recipient. The company is also based in Switzerland, which, sadly, makes it a hell of a lot more secure by default than any US-based company, as we're quickly finding out with this pending Apple / FBI case.

        That being said, I *don't* actually need secure chat, so I just use SMS or e-mail, which should be considered about as secure as a postcard.

No spitting on the Bus! Thank you, The Mgt.

Working...