RE: [Nolug] SSL bug from John Souvestre on 2014-04-09 (nolugarchives)

From: John Souvestre <johns_at_sstar.com>
Date: Wed, 9 Apr 2014 14:06:59 -0500
Message-ID: <015101cf5426$e3311990$a9934cb0$@sstar.com>

It doesn't matter how it was created. It's only a problem if used for SSL by
a flawed version of OpenSSL.

John

John Souvestre - New Orleans LA

-----Original Message-----
From: owner-nolug@stoney.kellynet.org [mailto:owner-nolug@stoney.kellynet.org]
On Behalf Of Joey Kelly
Sent: Wed, April 09, 2014 8:00 am
To: nolug@nolug.org
Subject: Re: [Nolug] SSL bug

On 04/09/2014 04:27 AM, Ron Johnson wrote:
> Do CA certificates need to be recreated?

If you created them with a vulnerable OpenSSL version, then yes. I've got one
to redo myself.

--
Joey Kelly
Minister of the Gospel and Linux Consultant http://joeykelly.net
504-239-6550
___________________
Nolug mailing list
nolug@nolug.org

___________________
Nolug mailing list
nolug@nolug.org

application/pkcs7-signature attachment: smime.p7s

Received on 04/09/14