[Ach] OpenSSL 'heartbleed' bug
L. Aaron Kaplan
aaron at lo-res.org
Tue Apr 8 12:07:02 CEST 2014
On Apr 8, 2014, at 11:53 AM, ianG <iang at iang.org> wrote:
> On 8/04/2014 10:40 am, Axel Hübl wrote:
>> Happy updating and cert renewing.
>>
>> ... and everybody is pushing forward to tls 1.1/1.2 which just became
>> available in OpenSSL 1.0.1
>>
>> Do we all get new free certs from our (probably also affected) CA's now?
>
Comodo seems to be affected:
http://filippo.io/Heartbleed/#comodo.com
>
> They might do that for marketing reasons, but they are not obligated to
> cover this issue.
>
> (pop quiz: what issue are they obligated to cover?)
>
> iang
>
>>> http://heartbleed.com/
> _______________________________________________
> Ach mailing list
> Ach at lists.cert.at
> http://lists.cert.at/cgi-bin/mailman/listinfo/ach
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 801 bytes
Desc: Message signed with OpenPGP using GPGMail
URL: <http://lists.cert.at/pipermail/ach/attachments/20140408/fc37deab/attachment.sig>
More information about the Ach
mailing list