You are viewing our Forum Archives. To view or take place in current topics click here.
HeartBleed Bug, Potentially serious!
Posted:
HeartBleed Bug, Potentially serious!Posted:
Status: Offline
Joined: Dec 24, 200914Year Member
Posts: 1,792
Reputation Power: 111
Heartbleed only effects OpenSSL's 1.0.1 and the 1.0.2-beta release.
The flaw can potentially be used to reveal not just the contents of a secured-message, such as a credit-card transaction over HTTPS, but the primary and secondary SSL keys themselves. This data could then, in theory, be used as a skeleton keys to bypass secure servers without leaving a trace that a site had been hacked.
After hearing about this I changed the majority of my passwords and I recommend everyone else do the same.
[ Register or Signin to view external links. ]
The flaw can potentially be used to reveal not just the contents of a secured-message, such as a credit-card transaction over HTTPS, but the primary and secondary SSL keys themselves. This data could then, in theory, be used as a skeleton keys to bypass secure servers without leaving a trace that a site had been hacked.
After hearing about this I changed the majority of my passwords and I recommend everyone else do the same.
[ Register or Signin to view external links. ]
You are viewing our Forum Archives. To view or take place in current topics click here.