Site Links
Home
Features
Documentation
Pricing & Order
Members Area
Support Options
UBBDev.com
UBBWiki.com
Who's Online Now
0 registered members (), 71 guests, and 246 spiders.
Key: Admin, Global Mod, Mod
Member Spotlight
JAISP
JAISP
Pennsylvania
Posts: 1,332
Joined: February 2007
Show All Member Profiles 
Top Posters(30 Days)
isaac 21
Ruben 10
Gizmo 8
Geoff 3
Slaz 2
FREAK 2
DennyP 1
Latest Photos
Testing to drag photos
Comfortable Cats
Test
BSA photos
Chinese Buddhist temple.
Previous Thread
Next Thread
Print Thread
Scramble to fix huge 'heartbleed' security bug #255302
04/10/14 05:01 AM
04/10/14 05:01 AM
Mark S  Offline OP
Joined: Jul 2006
Posts: 4,722
Liverpool : England : UK
http://www.bbc.co.uk/news/technology-26935905

And how to check

http://stackoverflow.com/questions/...ssl-and-mod-ssl-are-installed-on-apache2

Not sure which is the None Bug version ?
Just wanted to pass on something i only heard about today.


The bug has been present in versions of OpenSSL that have been available for over two years. The latest version of OpenSSL released on 7 April is no longer vulnerable to the bug.

"Considering the long exposure, ease of exploitation and attacks leaving no trace this exposure should be taken seriously," wrote the researchers.

Installing an updated version of OpenSSL did not necessarily mean people were safe from attack, said the team. If attackers have already exploited it they could have stolen encryption keys, passwords or other credentials required to access a server, they said.

Full protection might require updating to the safer version of OpenSSL as well as getting new security certificates and generating new encryption keys. To help people check their systems some security researchers have produced tools that help people work out if they are running vulnerable versions of OpenSSL.
http://www.bbc.co.uk/news/technology-26935905



BOOM !! Version v7.6.1.1
People who inspire me Isaac ME Gizmo
Express Hosting
Express Hosting "We are the official hosting company of UBB.threads. Ask us about our free migration services to migrate your UBB.threads installation."
Re: Scramble to fix huge 'heartbleed' security bug [Re: Mark S] #255319
04/12/14 04:02 AM
04/12/14 04:02 AM
Mark S  Offline OP
Joined: Jul 2006
Posts: 4,722
Liverpool : England : UK
http://heartbleed.com/

check your version you may not be effected smile

What versions of the OpenSSL are affected?

Status of different versions:

OpenSSL 1.0.1 through 1.0.1f (inclusive) are vulnerable
OpenSSL 1.0.1g is NOT vulnerable
OpenSSL 1.0.0 branch is NOT vulnerable
OpenSSL 0.9.8 branch is NOT vulnerable
Bug was introduced to OpenSSL in December 2011 and has been out in the wild since OpenSSL release 1.0.1 on 14th of March 2012. OpenSSL 1.0.1g released on 7th of April 2014 fixes the bug.


BOOM !! Version v7.6.1.1
People who inspire me Isaac ME Gizmo
Re: Scramble to fix huge 'heartbleed' security bug [Re: Mark S] #255324
04/12/14 04:38 PM
04/12/14 04:38 PM
Gizmo  Offline
UBB.threads Developer
Joined: Jun 2006
Posts: 16,956
Portland, OR; USA
I use CloudFlare as a CDN and they patched all of their SSL servers a week prior to the "oh crap the worlds ending" announcement.


I am a Web Development Contractor, I do not work for UBBCentral. I have provided free User to User Support since the beginning of these support forums.
Forums: A Gardeners Forum Scouters World
UBB.threads: UBBWiki, UBB Styles, UBB.Sitemaps
Longtime Supporter & Resident Post-A-Holic
VNC Web Services: Code Modifications, Upgrades, Styling, Coding Services, Disaster Recovery, and more!

Shout Box
Today's Birthdays
No Birthdays
Recent Topics
UBB.threads 7.6.2 - Released
by isaac. 09/17/18 08:08 AM
7.6.2 Changelog Discussion
by isaac. 09/17/18 06:35 AM
Upgrade Documentation
by DennyP. 09/15/18 03:55 PM
PHP 7.2
by Geoff. 09/12/18 10:22 PM
Email Cleanup-Is it possible?
by Ruben. 09/06/18 11:25 AM
Forum Statistics
Forums36
Topics35,139
Posts191,439
Members12,106
Most Online978
Jun 24th, 2007
Random Image
Powered by UBB.threads™ PHP Forum Software 7.6.2