Linked by Thom Holwerda on Tue 8th Apr 2014 22:06 UTC
Privacy, Security, Encryption

Heartbleed, a long-undiscovered bug in cryptographic software called OpenSSL that secures Web communications, may have left roughly two-thirds of the Web vulnerable to eavesdropping for the past two years. Heartbleed isn't your garden-variety vulnerability, so here's a quick guide to what it is, why it's so serious, and what you can do to keep your data safe.

Serious.

Permalink for comment 586727
To read all comments associated with this story, please click here.
Comment by Gone fishing
by Gone fishing on Wed 9th Apr 2014 03:31 UTC
Gone fishing
Member since:
2006-02-22

I'm guessing this is going to be a pain as patching will not be enough on it's own. If the ssl keys have been compromised they will need to be regenerated and you don't know if your system has been compromised as it is not in the logs - you will need to regenerate the ssl keys.

Reply Score: 4