D&C GLug - Home Page

[ Date Index ] [ Thread Index ] [ <= Previous by date / thread ] [ Next by date / thread => ]

Re: [LUG] OpenSSL 1.0.1 "Heartbleed" vulnerability

 

On Tue, 8 Apr 2014 10:42:07 +0100, Philip Hudson <phil.hudson@xxxxxxxxx>
wrote:
> On 8 April 2014 09:10, Martijn Grooten <martijn@xxxxxxxxxxxxxxxxxx>
wrote:
>> Things rarely get more serious than this:
>>
>>
http://arstechnica.com/security/2014/04/critical-crypto-bug-in-openssl-opens-two-thirds-of-the-web-to-eavesdropping/
>> http://heartbleed.com/
> 
> 
> Just checked OpenSSH dependencies in debian apt, and they do include
> libssl, so I guess OpenSSH is one of the affected apps. Damn.
> 
> -- 
> Phil Hudson                  http://hudson-it.no-ip.biz
> @UWascalWabbit                 PGP/GnuPG ID: 0x887DCA63

Bother... still I guess it's better to know and update the keys rather
than not do anything.

Rob

-- 
The Mailing List for the Devon & Cornwall LUG
http://mailman.dclug.org.uk/listinfo/list
FAQ: http://www.dcglug.org.uk/listfaq