[Wolves] Fwd: [LUG] OpenSSL 1.0.1 "Heartbleed" vulnerability

Richard Barker richard.barker at quietwatercourse.co.uk
Wed Apr 9 08:19:48 UTC 2014


One question I will ask is should we be thinking "disclosed
vulnerabilities"? After all, afaik, we only know about the Microsoft
vulnerabilities that they choose to disclose. Could the comparison look
worse than it really is?
On Apr 9, 2014 9:04 AM, "Peter Cannon" <dick_turpin at archlinux.us> wrote:

> On 08/04/14 18:13, Mark Croft wrote:
> > just reading this from devon linux user group , sounds serious ,
> > bugs/flaw/hole in cryptographic software library
> >
> > "Researchers have discovered an extremely critical defect in the
> > cryptographic software library an estimated two-thirds of Web servers
> > use to identify themselves to end users and prevent the eavesdropping
> > of passwords, banking credentials, and other sensitive data."
>
> Linux/FOSS is starting to have more holes than Windows ever had. Only a
> few weeks ago on the podcast we talked about the GNUTLS bug.
> http://arstechnica.com/security/2014/03/critical-crypto-bug-leaves-linux-hundreds-of-apps-open-to-eavesdropping/
> Gone are the days when we had something to crow about. The only positive
> to come out of this is it was fixed within a couple of hours but lets not
> forget its been around since 2012 for Pete's sake!
>
>
> --
> Regards
> Peter Cannon
>
> IRC: dick_turpin @ freenode.net
> https://twitter.com/dick_turpin
> http://www.cannon-linux.co.uk
> https://plus.google.com/100694334141523232451/posts
> Podcast: http://tdtrs.co.uk
> "There is every excuse for not knowing
> There is no excuse for not asking"
>
> _______________________________________________
> Wolves LUG mailing list
> Homepage: http://www.wolveslug.org.uk/
> Mailing list: Wolves at mailman.lug.org.uk
> Mailing list home: https://mailman.lug.org.uk/mailman/listinfo/wolves
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.lug.org.uk/pipermail/wolves/attachments/20140409/4ffc9464/attachment.html>


More information about the Wolves mailing list