Heartbleed (SSL): Act Quickly But Don’t Panic

[G.LinuxDucks]

Heartbleed: Act Quickly But Don’t Panic
No one knows if the Heartbleed flaw was exploited, but you should make changes to be safe, says Wayne Rash

On April 11, 2014 by Wayne Rash
A lot of leading online services have been working with an unknown vulnrability, dubbed Heartbleed. The open source code that implements the Secure Sockets Layer (SSL) encryption service, in some versions of Linux, is vulnerable to an exploit which could reveal up to 64 kilobytes of memory in the affected server.

The good news is that the OpenSSL Project issued a fix almost immediately, and passed it out as an update to Linux distributors. The bad news is that this vulnerability has been around for two years. .....
FULL:
http://www.techweekeurope.co.uk/comment/heartbleed-response-openssl-bug-143649

-- 
SENDER: g.linuxducks / Creator:
LinuxDucks Linux Operating System Club
HOME: http://linuxducks.webs.com/
ALT: https://sites.google.com/site/linuxducks/home
FORUM: http://linuxducks.free-forums.org/index.php
GROUPS:
http://tech.groups.yahoo.com/group/linuxducks/
http://groups.google.com/group/linuxducks
RSS https://groups.google.com/forum/feed/linuxducks/msgs/rss.xml?num=15