[ Date Index ] [ Thread Index ] [ <= Previous by date / thread ] [ Next by date / thread => ]

Re: [LUG] OpenSSL 1.0.1 "Heartbleed" vulnerability

To: list@xxxxxxxxxxxxx
Subject: Re: [LUG] OpenSSL 1.0.1 "Heartbleed" vulnerability
From: Philip Hudson <phil.hudson@xxxxxxxxx>
Date: Tue, 8 Apr 2014 14:04:45 +0100
Delivered-to: dclug@xxxxxxxxxxxxxxxxxxxxx
Dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=dcglug.org.uk; s=1396810045; h=Sender:Content-Transfer-Encoding:Content-Type:List-Subscribe:List-Help:List-Post:List-Unsubscribe:List-Id:Reply-To:Subject:To:Message-ID:Date:From:References:In-Reply-To:MIME-Version; bh=6KdJKRjEiqggtFueYNBIU5v0pWMPnOipEdLwJFNl7rQ=; b=FYMDbV5gqFqIE9xl2iV+TJWEP5N8ph138pF/XU9QOoQbThtBsUvevLHucj1JenPflEW7G04D2JduWt3MdTCc1PQ3mhUgFCxAuhiVRbFzJXlncalmDLPH6CAmTu7y6zjwI1pl4aVEjA/SEemp8hVTn8BR6K4Na3xZi3KX9tQ/bk8=;
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:sender:in-reply-to:references:from:date:message-id :subject:to:content-type; bh=FROLUmv+0/Tec8kCCreaONhUmDktBAmY1WGoPxKTM7s=; b=HiQzudedQZQivW/HiUvVaZwIcOu/wrpwpmaWc02iQW/4/0AzmOkzYv+Jd9eijNKEt9 dtwRkXGM+6Aqydv4W1LrIjJTXn9boh0LKHj+KjL26Zf5SD+KxsEjwhkc3hz3aYPptBtr 8xbGIzjEjttwhaDljJDeN/FnKsYPIdmUdxNowrkPZJ9/d35+tToO+AqC4gqshls6OO4S nO+Q46IgLUPKRvWqmah/DApWoem0scdyY/GPsQA1j/a2tHYIyo5EnUjw3GGRJ6twxBFS AwEVT8wTGtgKKALAzeFC3bVMbcubiOcFJvE+GMt4AvyyTyAQ7dJA3kMyZIj4AvSKvlg4 PV5g==

On 8 April 2014 14:02, Philip Hudson <phil.hudson@xxxxxxxxx> wrote:
> On 8 April 2014 13:45, Martijn Grooten <martijn@xxxxxxxxxxxxxxxxxx> wrote:
>> If that server runs OpenSSH and if OpenSSH stores
>> passwords, key phrases and/or private keys in memory,
>
>
> Can you give us an example of this, Martijn? Theoretical or existent.
> I'm having trouble grasping the concept.


Ignore, I understand. I misread "server" to mean "daemon".

-- 
Phil Hudson                  http://hudson-it.no-ip.biz
@UWascalWabbit                 PGP/GnuPG ID: 0x887DCA63

-- 
The Mailing List for the Devon & Cornwall LUG
http://mailman.dclug.org.uk/listinfo/list
FAQ: http://www.dcglug.org.uk/listfaq

References:
- [LUG] OpenSSL 1.0.1 "Heartbleed" vulnerability
  - From: Martijn Grooten
- Re: [LUG] OpenSSL 1.0.1 "Heartbleed" vulnerability
  - From: Philip Hudson
- Re: [LUG] OpenSSL 1.0.1 "Heartbleed" vulnerability
  - From: Philip Hudson
- Re: [LUG] OpenSSL 1.0.1 "Heartbleed" vulnerability
  - From: Philip Hudson
- Re: [LUG] OpenSSL 1.0.1 "Heartbleed" vulnerability
  - From: Martijn Grooten
- Re: [LUG] OpenSSL 1.0.1 "Heartbleed" vulnerability
  - From: Philip Hudson

Prev by Date: Re: [LUG] OpenSSL 1.0.1 "Heartbleed" vulnerability
Next by Date: Re: [LUG] OpenSSL 1.0.1 "Heartbleed" vulnerability
Previous by thread: Re: [LUG] OpenSSL 1.0.1 "Heartbleed" vulnerability
Next by thread: Re: [LUG] OpenSSL 1.0.1 "Heartbleed" vulnerability
Index(es):
- Date
- Thread