On April 8 I was notified by WiredTree, our hosting company, that their servers had been patched against a newly discovered (and serious) flaw in the SSL encryption technology which underpins secure browsing over https.<\/p>\n
It is called the Heartbleed bug.<\/p>\n
Our servers were not affected, as they ran CentOS5 and did not use Litespeed. Other sites which did use LiteSpeed were affected.<\/p>\n
Read more at: UPDATE<\/strong><\/p>\n An article on Thursday<\/a> explains how the bug crept in the Open Source software.<\/p>\n Heartbleed<\/a>, a \u201ccatastrophic<\/a>\u201d security flaw in the OpenSSL cryptographic protocol that has affected two-thirds of the entire Internet\u2019s communications, was\u00a0committed\u00a0<\/a>at 10:59 pm on New Year\u2019s Eve by Seggelmann, a 31-year-old M\u00fcnster, Germany-based programmer.<\/p>\n That night, he made an error that has been compared to the misspelling of Mississippi, a careless but almost inevitable mistake that went undetected for over two years.<\/p>\n<\/blockquote>\n \n","protected":false},"excerpt":{"rendered":" On April 8 I was notified by WiredTree, our hosting company, that their servers had been patched against a newly discovered (and serious) flaw in the SSL encryption technology which underpins secure browsing over https. It is called the Heartbleed bug. Our servers were not affected, as they ran CentOS5 and did not use Litespeed. … <\/p>\n
\nhttp:\/\/heartbleed.com\/<\/a>
\nhttps:\/\/blog.cloudflare.com\/staying-ahead-of-openssl-vulnerabilities<\/a><\/p>\n\n