Ars Technica

OpenSSL Certificate help

I'm trying to generate a certificate (using the openssl command line tool) that can't actually DO anything - can't sign, can't encrypt. Is this possible? It seems like the purpose of the certificate ...
Threat Post

OpenSSL Patches Critical Certificate Validation Vulnerability

A high-severity bug in OpenSSL was disclosed today, and it affects only organizations that installed an update released in June, and allows anyone with an untrusted TLS certificate to become a CA.