Announcement

Collapse

Computer Lab Guidelines

Here in the computer lab, we talk about cool tech, the newest coolest gadgets, and tackle your toughest tech questions.

If you need to refresh yourself on the decorum, now would be a good time. Forum Rules: here
See more
See less

Heartbleed

Collapse
X
 
  • Filter
  • Time
  • Show
Clear All
new posts

  • Truthseeker
    replied
    Kim Komando reports that several experts say that Heartbleed is beyond repair. We need to change to another SSL model. http://www.komando.com/blog/249665/h...-article_3-cta

    Leave a comment:


  • Truthseeker
    replied
    When you visit a website for the first time since you learned about the Heartbleed bug, consider changing your password for that site, if any, as the first thing to do on site.

    Leave a comment:


  • Epoetker
    started a topic Heartbleed

    Heartbleed

    Public service announcement: If you own or run any Linux web servers, cloud or dedicated, that use https, then upgrade your version of openssl immediately, restart all open files, then re-issue your SSL certificates with new private keys.

    Process: Determine if your version of SSL is vulnerable:

    lsof -n | grep ssl | grep DEL

    If any running programs show up in the list, you're going to need to...

    yum clean metadata && yum update openssl

    or...

    apt-get update && apt-get install openssl

    Then run that original lsof command and restart EVERYTHING that shows up on the list. Then you can replace your certificates and key.

    For git lovers, there's this repo for testing vulnerable port 443s from the outside, if you also like python.

    End public service announcement, though this is what happens when you update your libraries to counter one theoretical BEAST attack and make yourself vulnerable to something much more serious.

Related Threads

Collapse

Topics Statistics Last Post
Started by Teallaura, Today, 07:04 AM
6 responses
20 views
0 likes
Last Post Sparko
by Sparko
 
Started by Teallaura, 05-02-2021, 09:48 AM
38 responses
173 views
0 likes
Last Post Teallaura  
Started by QuantaFille, 04-29-2021, 07:55 AM
14 responses
49 views
0 likes
Last Post Sparko
by Sparko
 
Started by Teallaura, 04-27-2021, 11:01 AM
104 responses
371 views
0 likes
Last Post Teallaura  
Started by Sparko, 04-16-2021, 01:09 PM
23 responses
110 views
0 likes
Last Post kiwimac
by kiwimac
 
Working...
X