Heartbleed Bug
-
Are powdertoy servers vunerable? Also, check this (https://github.com/musalbas/heartbleed-masstest/blob/master/top1000.txt) and (http://filippo.io/Heartbleed/) for other things specific to you.
-
No.
IRC last night:
<Ximon> Goddam openssl, I hope you've all updated...
<jacob1> I was bored so I tested powdertoy.co.uk on some website that reported if it was vulnerable, seemed fine :)<Ximon> Yes, by some stroke of luck, I compiled nginx statically a while ago with openssl 0.9.8 or something
<jacob1> lol
<jacob1> that works<Ximon> But I updated & rebooted everything anyway
Edited 2 times by jacksonmj. Last: 10th Apr 2014 -
-
@boxmein (View Post)
Oh, the thing is actually terribly simple, https://github.com/mniip/um32/blob/master/umjit.c#L432-L453 -
Oh. Simple.
-
CeeJayBee:
I was literally just thinking this.
Also, I hope simon doesn't use XP. I bet a bunch of Russian hackers have been hiding a zero-day exploit until windows did this
1.) Heartbleed has nothing to do with WinXP 0-day exploits.
2.) why would windows XP be used to host a webservice of this type?
-
No, I was just bringing up about Microsoft choosing to discontinue security support for XP. And fair point.
