[LUNA] heartbleed
Michael W. Hall
hallmw at att.net
Thu Apr 10 20:21:40 CDT 2014
That is what they said at work Bob. Basically it did a memory dump of
the system. You could eventually get a snap shot of the memory.
On Thu, 2014-04-10 at 15:26 +0000, Bob Nance wrote:
> ALL versions of OpenSSL had the bug.
>
> There is no way to track that the bug was triggered.
>
> It did not require you to actually access or authenticate to the system in
> any way.
>
> The bug, basically, did a memory dump of the running system (as I
> understand it).
>
> So, it must be assumed that EVERY OpenSSL implementation was being
> triggered every few minutes since the dawn of time.
>
> Yes, it¹s that bad.
>
>
More information about the LUNA
mailing list