Wednesday, April 9, 2014

OpenSSL Heartbleed Bug - Keep Calm Edition

I've been reading lots of articles about the heartbleed bug and even had to address the potential threat in my own systems. So, I'd like to clear up some misconceptions I have found floating around.

I've read articles claiming that this is a bug in systems built before April 7th, 2014, which is not completely true.

THIS ISSUE ONLY AFFECTS VERSIONS: 
  • OpenSSL 1.0.1 through 1.0.1f
  • OpenSSL 1.0.2-beta

If you are running one of those versions, check with:
openssl version -a
you will want to update to the latest version of openssl ASAP.

Read more here: http://www.us-cert.gov/ncas/alerts/TA14-098A


Thank You for reading,

Keep Calm and Carry On

No comments:

Post a Comment

Have a question? Something to add to the post? Do it here...