On Thu, Apr 17, 2014 at 1:31 AM, John R Pierce <pierce@xxxxxxxxxxxx> wrote:
No, SSL is not enabled in my case but also wanted to make sure there is no binary available which can later result into any potential issue.
http://www.enterprisedb.com/products-services-training/pgbindownload also has the note added sometime back.
do you enable SSL and expose it to an insecure network ? if not, no exposure to the heartbleed bug.
No, SSL is not enabled in my case but also wanted to make sure there is no binary available which can later result into any potential issue.
AFAIK, the binary name is postgres.exe, from what I've read they are static linking openssl. the updated versions on the site linked in another message are fixed per the note on that page. http://www.enterprisedb.com/products-services-training/pgdownload
http://www.enterprisedb.com/products-services-training/pgbindownload also has the note added sometime back.
I was able to verify for Linux binaries looking at STRINGS of so file but was not sure about the windows side and hence was looking for confirmation.
Regards...
