Re: Heartbleed (was ... Re: My fellow (Debian) Linux users ...)

To: debian-user@lists.debian.org
Subject: Re: Heartbleed (was ... Re: My fellow (Debian) Linux users ...)
From: Richard Hector <richard@walnut.gen.nz>
Date: Mon, 14 Apr 2014 21:58:49 +1200
Message-id: <[🔎] 534BB159.2060605@walnut.gen.nz>
In-reply-to: <[🔎] slrnlknbmn.2k5.curty@einstein.electron.org>
References: <[🔎] 1397328483.609.19.camel@archlinux> <[🔎] 1397329416.609.20.camel@archlinux> <[🔎] 1397331077.609.28.camel@archlinux> <[🔎] CAAr43iM_yExKxuk=-qZ0d7miPDqkiL_0jgWTHp0SBNBYf_O4UA@mail.gmail.com> <[🔎] 1397407039.609.61.camel@archlinux> <[🔎] 20140414030313.GA9681@tal> <[🔎] 534B8648.1000604@hardwarefreak.com> <[🔎] 534BA72B.8010609@walnut.gen.nz> <[🔎] slrnlknbmn.2k5.curty@einstein.electron.org>

On 14/04/14 21:49, Curt wrote:
> On 2014-04-14, Richard Hector <richard@walnut.gen.nz> wrote:
>> >
>> > This one, on the other hand, was generally not predicted, and was widely
>> > exploited before people got a chance to fix it. That's presumably still
>> > going on.
> Widely exploited?
> 
> http://en.wikipedia.org/wiki/Heartbleed
> 
> Possible exploitation prior to disclosure 

My understanding is that it has been widely exploited _since_ disclosure.

I could be wrong, of course - I think I heard it in chat around the office.

Richard

Reply to:

Follow-Ups:
- Re: Heartbleed (was ... Re: My fellow (Debian) Linux users ...)
  - From: Curt <curty@free.fr>

References:
- My fellow (Debian) Linux users ...
  - From: Ralf Mardorf <ralf.mardorf@rocketmail.com>
- Re: My fellow (Debian) Linux users ...
  - From: Ralf Mardorf <ralf.mardorf@alice-dsl.net>
- Re: My fellow (Debian) Linux users ...
  - From: Ralf Mardorf <ralf.mardorf@rocketmail.com>
- Re: My fellow (Debian) Linux users ...
  - From: Joel Rees <joel.rees@gmail.com>
- Re: My fellow (Debian) Linux users ...
  - From: Ralf Mardorf <ralf.mardorf@rocketmail.com>
- Heartbleed (was ... Re: My fellow (Debian) Linux users ...)
  - From: Chris Bannister <cbannister@slingshot.co.nz>
- Re: Heartbleed (was ... Re: My fellow (Debian) Linux users ...)
  - From: Stan Hoeppner <stan@hardwarefreak.com>
- Re: Heartbleed (was ... Re: My fellow (Debian) Linux users ...)
  - From: Richard Hector <richard@walnut.gen.nz>
- Re: Heartbleed (was ... Re: My fellow (Debian) Linux users ...)
  - From: Curt <curty@free.fr>

Prev by Date: Re: Heartbleed (was ... Re: My fellow (Debian) Linux users ...)
Next by Date: Re: Heartbleed (was ... Re: My fellow (Debian) Linux users ...)
Previous by thread: Re: Heartbleed (was ... Re: My fellow (Debian) Linux users ...)
Next by thread: Re: Heartbleed (was ... Re: My fellow (Debian) Linux users ...)
Index(es):
- Date
- Thread