Serious OpenSSL vulnerability
Roger
arelem at bigpond.com
Thu Apr 10 23:30:19 UTC 2014
On 10/04/14 14:59, Edward M wrote:
> On 4/9/2014 3:30 PM, eoconnor25 at gmail.com wrote:
>> I gotta say....I'm so impressed with the way this issue has been
>> handled by the developers here @ Fedora....I've updated all three of
>> my Fedora boxes....and will sleep soundly knowing the vulnerability
>> has been addressed by the best and brightest! So a heart felt "Thank
>> You" to the Guys and Gals who have dedicated their time to creating
>> the BEST operating system to ever grace my Dell computers!!!
>
> You may also want to create new private key, buy a new cert
> from CA and install the new key.
> for each website supporting OpenSSL and change the passwords.
> since this problem existed for two years
> and there is not really way to detect, if it was exploited by
> someone.
I too heartily agree with the above.
Added to this, my isp sent an email to advise that they too had
addressed the issue.
We are fortunate in Open source and Linux to have such talented
developers to pounce on and fix such issues.
Thank you
Roger
More information about the users
mailing list