Wednesday, April 9, 2014

Fixes for the highly dangerous OpenSSL Heartbleed security hole are arriving now. Update your servers ASAP.

Via LH

heartbleed


Make no mistake about it. The OpenSSL Heartbleed security hole is as serious for Internet security as a stage four cancer diagnosis would be for you. Worse still, OpenSSL 1.01 —  the one production version affected — had been shipping since March 12, 2012. That meant tens of millions of Web sites had been potentially vulnerable to attacks via this hole. Fortunately, OpenSSL repaired this with the release of OpenSSL 1.01g on April 7.

More @ ZD Net

No comments:

Post a Comment