Re: [tbb-dev] Plan for new TBBs re Openssl bug?

7 Apr 2014


      This is a server-side attack, so clients don't need to make any
change, but you should look at the server configuration and see what
version of what SSL library you're running.  And actually, now that I
think of it, look at tor itself and see how it impacts it.  Worst case
scenario would be people being able to steal tor node identity
keys....
-tom
On 7 April 2014 16:41, Roger Dingledine arma@mit.edu wrote:
...
https://www.openssl.org/news/vulnerabilities.html#2014-0160
http://heartbleed.com/
Is TBB affected? Is there a plan for an update?
--Roger

tbb-dev mailing list
tbb-dev@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tbb-dev

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

Re: [tbb-dev] Plan for new TBBs re Openssl bug?