Big security hole in OpenSSL

Heartbleed is a bug in OpenSSL which allows an attacker to read the memory of a server. Since many websites including some of the biggest site use “OpenSSL” everyone’ s secure passwords may be at risk.

On April 7, 2014, it was announced that OpenSSL 1.0.2-beta, as well as all versions of OpenSSL in the 1.0.1 series except 1.0.1g had a severe memory handling bug in their implementation of the TLS Heartbeat Extension.

See full episode!

Heartbleed Server Test – see if your favorite sites have been fixed.

Fix your browser!

To protect yourself from Heartbleed is for your browser to check for revoked security certificates. In Chrome go to “Settings”, “Show advanced settings”, “HTTPS/SSL” and put a check-mark in “Check for server certificate revocation”.

 

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s