Tell me it's not true:
Huge Hole in Open Source Software Found, Leaves Millions Vulnerable
Peace
Huge Hole in Linux Found, Leaves Millions Vulnerable
Moderator: Site Moderators
-
- Posts: 179
- Joined: Sun Dec 02, 2007 6:40 am
- Location: Team_XPS ..... OC, S. Calif
Huge Hole in Linux Found, Leaves Millions Vulnerable
T.E.A.M. “Together Everyone Accomplishes Miracles!”
OC, S. California ... God Bless All
OC, S. California ... God Bless All
-
- Site Admin
- Posts: 1288
- Joined: Fri Nov 30, 2007 9:37 am
- Location: Oxfordshire, UK
Re: Huge Hole in Linux Found, Leaves Millions Vulnerable
This is old news: http://article.gmane.org/gmane.linux.de ... ounce/1614
It only affects Debian and derived distros (like ubuntu), since it was their distro-specific alteration of OpenSSL that caused the bug, and was patched as soon as it was discovered.
Moved to General non-FAH. -UF
It only affects Debian and derived distros (like ubuntu), since it was their distro-specific alteration of OpenSSL that caused the bug, and was patched as soon as it was discovered.
Moved to General non-FAH. -UF
-
- Posts: 179
- Joined: Sun Dec 02, 2007 6:40 am
- Location: Team_XPS ..... OC, S. Calif
Re: Huge Hole in Linux Found, Leaves Millions Vulnerable
What a relief.....
Thanx UF for the quick reply.
Peace
Thanx UF for the quick reply.
Peace
T.E.A.M. “Together Everyone Accomplishes Miracles!”
OC, S. California ... God Bless All
OC, S. California ... God Bless All
-
- Site Admin
- Posts: 1288
- Joined: Fri Nov 30, 2007 9:37 am
- Location: Oxfordshire, UK
Re: Huge Hole in Linux Found, Leaves Millions Vulnerable
The vulnerability is likely not to affect desktop users anyway, since most applications that use OpenSSL are server or remote access applications. If you use SSH, you'll want to regenerate your keys though.
See this page for details on affected apps and how to perform the key rollover: http://www.debian.org/security/key-rollover/
Applications like Firefox (Iceweasel on Debian) aren't affected as they use a different crypto library.
See this page for details on affected apps and how to perform the key rollover: http://www.debian.org/security/key-rollover/
Applications like Firefox (Iceweasel on Debian) aren't affected as they use a different crypto library.