Dane - OpenSSL Heartbleed Bug?
General discussions and other topics.
13 posts
Page 2 of 2
It is too bad more financial services don't support two factor auth, especially given how easy it is now to implement on top of services like Google auth or even just using SMS.
Kelsey Cummings
System Architect, Sonic.net, Inc.
System Architect, Sonic.net, Inc.
Please correct me if I'm wrong. Each service needs to do several things to become secure:
As far as ssh goes, it uses my private key on my box and doesn't use a server on my box. So my private key should not be vulnerable and, hence, neither should data sent to me. If ssh data is double encrypted (uphill by my private key and downhill by your private key) then there should really not be much of any problem. Correct?
- update the SSL code to remove the bug.
- generate new public/private key pair
- get updated certificate with the new public key
- does the browser need to refresh cache or something to get the new cert?
As far as ssh goes, it uses my private key on my box and doesn't use a server on my box. So my private key should not be vulnerable and, hence, neither should data sent to me. If ssh data is double encrypted (uphill by my private key and downhill by your private key) then there should really not be much of any problem. Correct?
13 posts
Page 2 of 2
Who is online
In total there are 3 users online :: 1 registered, 0 hidden and 2 guests (based on users active over the past 5 minutes)
Most users ever online was 999 on Mon May 10, 2021 1:02 am
Users browsing this forum: Ahrefs [Bot] and 2 guests
Most users ever online was 999 on Mon May 10, 2021 1:02 am
Users browsing this forum: Ahrefs [Bot] and 2 guests