Dne 9.4.2014 17:27, Johnny Hughes napsal(a): > It is only things that actually used SSL in memory (like httpd, imaps, > pop3s, etc) . those certificates COULD have been impacted. openssh was > not impacted (based on my reading). What about the user credentials sent over this "insecure" communication channel. They could be also compromised... DH _______________________________________________ CentOS mailing list CentOS@xxxxxxxxxx http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS-announce] CVE-2014-0160 CentOS 6 openssl heartbleed workaround
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- To: CentOS mailing list <centos@xxxxxxxxxx>
- Subject: Re: [CentOS-announce] CVE-2014-0160 CentOS 6 openssl heartbleed workaround
- From: David Hrbáč <david-lists@xxxxxxxx>
- Date: Thu, 10 Apr 2014 13:17:34 +0200
- Delivered-to: centos@xxxxxxxxxx
- In-reply-to: <534566E6.2060107@centos.org>
- User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:24.0) Gecko/20100101 Thunderbird/24.4.0
- Follow-Ups:
- Re: [CentOS-announce] CVE-2014-0160 CentOS 6 openssl heartbleed workaround
- From: Johnny Hughes
- Re: [CentOS-announce] CVE-2014-0160 CentOS 6 openssl heartbleed workaround
- References:
- Re: [CentOS-announce] CVE-2014-0160 CentOS 6 openssl heartbleed workaround
- From: Always Learning
- Re: [CentOS-announce] CVE-2014-0160 CentOS 6 openssl heartbleed workaround
- From: Johnny Hughes
- Re: [CentOS-announce] CVE-2014-0160 CentOS 6 openssl heartbleed workaround
- From: Markus Falb
- Re: [CentOS-announce] CVE-2014-0160 CentOS 6 openssl heartbleed workaround
- From: Johnny Hughes
- Re: [CentOS-announce] CVE-2014-0160 CentOS 6 openssl heartbleed workaround
- Prev by Date: Re: FLASH NewsBites - Heartbleed Open SSL Vulnerability (fwd)
- Next by Date: CentOS-announce Digest, Vol 110, Issue 6
- Previous by thread: Re: [CentOS-announce] CVE-2014-0160 CentOS 6 openssl heartbleed workaround
- Next by thread: Re: [CentOS-announce] CVE-2014-0160 CentOS 6 openssl heartbleed workaround
- Index(es):
 |