ssl panic about Heartbleed
ssl panic about Heartbleed
Hello all,
I wouldn‘t come here, if it wouldtn‘t seems to be that the German part of this forum is sleeping. I hope someone is able to understand me nonetheless. I‘m new with puppy-precise_5.7.1 and just discovered that /etc/ssl folder and asked myself how can I know what to do about that ssl problem there is actally reported. Is it necessary now to change anything? There are also some files in /lib/modules/all-firmware/. What about them?
Carsten
I wouldn‘t come here, if it wouldtn‘t seems to be that the German part of this forum is sleeping. I hope someone is able to understand me nonetheless. I‘m new with puppy-precise_5.7.1 and just discovered that /etc/ssl folder and asked myself how can I know what to do about that ssl problem there is actally reported. Is it necessary now to change anything? There are also some files in /lib/modules/all-firmware/. What about them?
Carsten
Last edited by Carsten on Sun 27 Apr 2014, 00:42, edited 1 time in total.
In terminal type
openssl version
to see what version you are running
OpenSSL 1.0.1 - 1.0.1f are at risk
It looks like yours might be at risk. See this thread.
http://murga-linux.com/puppy/viewtopic. ... 780#770780
openssl version
to see what version you are running
OpenSSL 1.0.1 - 1.0.1f are at risk
It looks like yours might be at risk. See this thread.
http://murga-linux.com/puppy/viewtopic. ... 780#770780
Hi Chris, well, I don't understand what you want to comunicate to me. Does it mean, that the sentence you quote is as mysterious as yours?cthisbear wrote:" I wouldn‘t come here, if it wouldtn‘t seems to be that the German
part of this forum is sleeping. ""
:::::::::
VAKE UP.
There you are Carsten....Best I could do.
Chris.
---------------
No definitions found for "vake", perhaps you mean:
gcide: Ake Vae Bake Cake Fake Hake Lake make Nake
Rake Sake Take Wake Vade vale Vane Vare vase
wn: bake cake fake hake lake make rake sake take wake
vale vane vase
moby-thes: bake cake fake make rake sake take wake
vale vase
easton: Bake Cake
bouvier: MAKE NAKE TAKE
devil: take
gaz2k-counties: Lake Wake
gaz2k-places: Kake Lake Rake Vale
afr-deu: vak
cro-eng: jake svake vage vaze
eng-ara: ake bake cake fake jake lake make rake sake
take wake vade vale vane vase
eng-cro: bake cake fake hake lake make rake sake take
wake vale vane vase
eng-cze: bake cake fake hake jake lake make rake sake
take wake vale vane vase
eng-hin: bake cake fake hake lake make rake sake take
wake vale vane vase
eng-swa: make sake wake
eng-tur: bake cake fake hake jake lake make rake sake
take wake vale vane vase
hun-eng: vak
nld-deu: vak
nld-eng: vak
nld-fra: vak
swa-eng: ake
tur-eng: vade vale vaka vaki
------------
The problem seems to affect servers it seems... the effect for us is that certain software may stop working because the server has changed its ssl arrangements... it has affect pidgin and curl so far for me.
The older 'safe' ssl is unfortunately not a cure though using nss from mozilla fixed pidgin in my case.
I guess there was a few geeks who climbed off their high horses after this was exposed and took quite a reality check.
Bear in mind its another potential weakness that no one had exploited and are not likely too since its known about now.
Mike
The older 'safe' ssl is unfortunately not a cure though using nss from mozilla fixed pidgin in my case.
I guess there was a few geeks who climbed off their high horses after this was exposed and took quite a reality check.
Bear in mind its another potential weakness that no one had exploited and are not likely too since its known about now.
Mike
Hello Mike, so you say, it's rather equal what version of OpenSSL we use as clients? But I've heard that it's possible to abuse heartbleed from and to both sides, server and client.mikeb wrote:The problem seems to affect servers it seems... the effect for us is that certain software may stop working because the server has changed its ssl arrangements... it has affect pidgin and curl so far for me.
The older 'safe' ssl is unfortunately not a cure though using nss from mozilla fixed pidgin in my case.
I guess there was a few geeks who climbed off their high horses after this was exposed and took quite a reality check.
Bear in mind its another potential weakness that no one had exploited and are not likely too since its known about now.
Mike
No, I was just mentioning that due to servers altering their ssl arrangements because of this, it does affect us as clients in some cases. (dropbox, yahoo chat as examples)
As to direct vunerability .. who knows... seems to be more of a server concern ... like many of these potential exploits no one is likely to persue it since its already known about
mike
As to direct vunerability .. who knows... seems to be more of a server concern ... like many of these potential exploits no one is likely to persue it since its already known about
mike
" Hi Chris, well, I don't understand what you want to comunicate to me.
Does it mean, that the sentence you quote is as mysterious as yours? "
It's a new thing called Humour.
I just invented it.
VAKE UP .... means Wake up.
You did say >> German part of this forum is sleeping.
So a little tasteless on my behalf....but..............
Chris.
Does it mean, that the sentence you quote is as mysterious as yours? "
It's a new thing called Humour.
I just invented it.
VAKE UP .... means Wake up.
You did say >> German part of this forum is sleeping.
So a little tasteless on my behalf....but..............
Chris.
Hi Mike, main thing for me is, since some days my gmx-account doesn‘t work solid. Perhaps I should just sit and have a cup of tea, but I wondered what my task is in dependancy to that heartbleed at all.mikeb wrote:If we do not use a version that agrees with the server then it does not work....or thats how it appears to be.
mike
Carsten
Hi cthisbear, hm... I thought of humour... Why didn‘t you whrite „WAKE“ instead of „VAKE“?cthisbear wrote:...
It's a new thing called Humour.
I just invented it.
VAKE UP .... means Wake up.
You did say >> German part of this forum is sleeping.
So a little tasteless on my behalf....but..............
Chris.
Carsten
Ok, now the version that is installed on my client seems to be somtimes compatible to gmx. But do I get you right, it‘s not necessary to upgrade it, even when it‘s between the 1.0.1 and 1.0.1.f, those who are vulnerable, because communication between gmx and me doesn‘t save any crypted or uncrypted stuff that could read out on my machine?
Against the Heat bleed: Fix PET for Precise Puppy
Downloads for Puppy Linux [url]http://shino.pos.to/linux/downloads.html[/url]