http://www.bbc.co.uk/news/technology-26935905

And how to check

http://stackoverflow.com/questions/...ssl-and-mod-ssl-are-installed-on-apache2

Not sure which is the None Bug version ?
Just wanted to pass on something i only heard about today.


The bug has been present in versions of OpenSSL that have been available for over two years. The latest version of OpenSSL released on 7 April is no longer vulnerable to the bug.

"Considering the long exposure, ease of exploitation and attacks leaving no trace this exposure should be taken seriously," wrote the researchers.

Installing an updated version of OpenSSL did not necessarily mean people were safe from attack, said the team. If attackers have already exploited it they could have stolen encryption keys, passwords or other credentials required to access a server, they said.

Full protection might require updating to the safer version of OpenSSL as well as getting new security certificates and generating new encryption keys. To help people check their systems some security researchers have produced tools that help people work out if they are running vulnerable versions of OpenSSL.
http://www.bbc.co.uk/news/technology-26935905



BOOM !! Version v7.6.1.1
People who inspire me Isaac ME Gizmo