the 2nd wave of OpenSSL vulnerability is out. this time have 5 weakness: man in the middle attack, DDoS attack and a remote code execution. luckily this time major browsers are not affected but better to check your SSL client for example VPN client, email gateway and so on.
actually the last patch only fix the found problem that triggered a lot of people relook into the previous codes and then dig out any 5-6 new problems but all announced with the patches available, so technically no zero day attack this time.
在線雷達
發表於 2014-6-9 23:27:32
廣播
置頂
推舊帖
收嗲鳥
油顏色
發表於 2014-6-11 18:40:55