[CentOS] [CentOS-announce] CVE-2014-0160 CentOS 6 openssl heartbleed workaround
Paul Heinlein
heinlein at madboa.com
Wed Apr 9 15:36:38 UTC 2014
On Wed, 9 Apr 2014, Johnny Hughes wrote:
> 1. Besides doing the updates, you should replace any certificates
> using SSL or TLS that are openssl based. This includes VPN,
> HTTPD, etc. See http://heartbleed.com/ for more info on impacted
> keys.
The OpenVPN folks note that if your configuration uses the additional
TLS auth configuration bits (tls-auth), then OpenVPN certificates were
not exposed to a heartbeat attach.
--
Paul Heinlein
heinlein at madboa.com
45°38' N, 122°6' W
More information about the CentOS
mailing list