WinVistaBeta.com - Message | SslStream shutdown issue

Subject: SslStream shutdown issue

Group: microsoft.public.windows.developer.winfx.sdk

Date: 11/29/2006 8:38:00 AM

From: =?Utf-8?B?Y29kZW11dHQ=?= [Email Address Protection]

I wrote a small test app using SslStream.

When you close an SslStream it does not notify the peer first with a
close_notify.

Is there some way to force SslStream to send a close_notify before closing
the stream? If not, then that means SslStream is vulnerable to a so-called
truncation attack.

Will a future version of the FCL fix this?

Back

Home Articles Gallery Groups Download Links Tools Archive

Site News

September 1, 2006

Windows Vista RC 1 screenshots added

July 3, 2006

Windows Vista Source Tree

June 10, 2006

Updated OpenSearch Generator

May 23, 2006

Windows Vista Beta 2 Released

March 16, 2006

Download Section Added

Timeline

Windows Vista Release

6.0.6000

January 30 2007

Windows Vista RTM

6.0.6000

November 8 2006

Windows Vista RC 1

6.0.5600

September 1, 2006

Windows Vista Beta 2

6.0.5384

May 23, 2006

Windows Vista Beta 1

6.0.5112

Windows Vista Beta | WinVistaBeta.com - Message | SslStream shutdown issue

Site News

September 1, 2006

July 3, 2006

June 10, 2006

May 23, 2006

March 16, 2006

Timeline

Windows Vista Release

January 30 2007

Windows Vista RTM

November 8 2006

Windows Vista RC 1

September 1, 2006

Windows Vista Beta 2

May 23, 2006

Windows Vista Beta 1

July 27, 2005