[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[tor-talk] [cryptography] The Heartbleed Bug is a serious vulnerability in OpenSSL
- To: [email protected]
- Subject: [tor-talk] [cryptography] The Heartbleed Bug is a serious vulnerability in OpenSSL
- From: [email protected] (grarpamp)
- Date: Fri, 11 Apr 2014 19:02:53 -0400
- In-reply-to: <1409607.uUXFrpi0Wi@lap>
- References: <CAD2Ti2_tOpe+gvwqwr3G91jnFw8T=ihsaEYsB53+6iDh8reEwQ@mail.gmail.com> <149518711.83101.1397221629681.JavaMail.www@wwinf8224> <[email protected]$> <1409607.uUXFrpi0Wi@lap>
On Fri, Apr 11, 2014 at 10:43 AM, rysiek <[email protected]> wrote:
> Dnia piÄ?tek, 11 kwietnia 2014 16:32:44 Georgi Guninski pisze:
>> Is there a significant rise of revoked certs caused
>> by HB paranoia?
>
> No idea, but we're considering revoking ours.
As to ocsp/crl revocation, haven't looked (depending on
application, getting the cert swapped out is more important
anyway).
But those of us who pin down certs instead of trusting CA's
have been doing quite a bit of reconfiguring this week
due to upstream certs being swapped out.