I've just released gnutls 0.3.5. It seems that some debugging code has escaped and allowed some attacks against RSA private keys. You must update if you're using gnutls with a private keys. - Corrected the RSA key exchange method, to avoid attacks against PKCS-1 formating. -- Nikos Mavroyanopoulos mailto:nmav@hellug.gr