9 Apr
2014
9 Apr
'14
3:36 p.m.
On Wed, 9 Apr 2014, Johnny Hughes wrote:
- Besides doing the updates, you should replace any certificates using SSL or TLS that are openssl based. This includes VPN, HTTPD, etc. See http://heartbleed.com/ for more info on impacted keys.
The OpenVPN folks note that if your configuration uses the additional TLS auth configuration bits (tls-auth), then OpenVPN certificates were not exposed to a heartbeat attach.
--
Paul Heinlein
heinlein@madboa.com
45°38' N, 122°6' W