[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: DSA 2896-2 openssl - Apache 2 not detected as service to restart by postinst?

Hi,

If Perfect Forward Secrecy is enabled, it there still a change that the
private keys are compromised? This is the hole point about PFS, right?

Grtz,


On 04/09/2014 02:15 PM, bsod wrote:
> Am 2014-04-09 13:38, schrieb Vladislav Kurz:
>> So, why does openssh-server depend on libssl ?
> oh... my bad, searched for dependencies openssl instead of libssl.
> 
> However, it still does not use TLS and is therefore not concerned by
> bugs in the heartbeat extension to it.
> 
> Kind regards,
> 
> Chris
> 
> 


--
Reply to: