Huge Hole in Linux Found, Leaves Millions Vulnerable

MoneyGuyBK · Post by **MoneyGuyBK** » Fri May 23, 2008 9:48 pm

Tell me it's not true:
Huge Hole in Open Source Software Found, Leaves Millions Vulnerable

Peace

Post by **uncle_fungus** » Fri May 23, 2008 10:00 pm

This is old news: http://article.gmane.org/gmane.linux.de ... ounce/1614

It only affects Debian and derived distros (like ubuntu), since it was their distro-specific alteration of OpenSSL that caused the bug, and was patched as soon as it was discovered.

Moved to General non-FAH. -UF

MoneyGuyBK · Post by **MoneyGuyBK** » Fri May 23, 2008 10:03 pm

What a relief.....
Thanx UF for the quick reply.

Peace

Post by **uncle_fungus** » Fri May 23, 2008 10:09 pm

The vulnerability is likely not to affect desktop users anyway, since most applications that use OpenSSL are server or remote access applications. If you use SSH, you'll want to regenerate your keys though.

See this page for details on affected apps and how to perform the key rollover: http://www.debian.org/security/key-rollover/

Applications like Firefox (Iceweasel on Debian) aren't affected as they use a different crypto library.

Folding Forum

Huge Hole in Linux Found, Leaves Millions Vulnerable

Huge Hole in Linux Found, Leaves Millions Vulnerable

Re: Huge Hole in Linux Found, Leaves Millions Vulnerable

Re: Huge Hole in Linux Found, Leaves Millions Vulnerable

Re: Huge Hole in Linux Found, Leaves Millions Vulnerable