[LUNA] heartbleed
Paul F. Pearson
pfpearson at mchsi.com
Fri Apr 11 08:40:01 CDT 2014
XKCD did a great job of explaining how this bug works:
http://xkcd.com/1354/
------
Paul F. Pearson
We all laugh in the same language
----- "Michael W. Hall" <hallmw at att.net> wrote:
> That is what they said at work Bob. Basically it did a memory dump of
> the system. You could eventually get a snap shot of the memory.
>
> On Thu, 2014-04-10 at 15:26 +0000, Bob Nance wrote:
> > ALL versions of OpenSSL had the bug.
> >
> > There is no way to track that the bug was triggered.
> >
> > It did not require you to actually access or authenticate to the
> system in
> > any way.
> >
> > The bug, basically, did a memory dump of the running system (as I
> > understand it).
> >
> > So, it must be assumed that EVERY OpenSSL implementation was being
> > triggered every few minutes since the dawn of time.
> >
> > Yes, it¹s that bad.
> >
> >
>
>
> _______________________________________________
> LUNA mailing list
> LUNA at lunagroup.us
> http://lunagroup.us/mailman/listinfo/luna
More information about the LUNA
mailing list