11 Apr
2014
11 Apr
'14
8:18 p.m.
I was totally up to date when the scan was run and got a ticket for my
SSL web server. So, something to look out for on Debian stable,
despite what looked like a re-issue of the patched deb to restart
services, is apache not being restarted.
I'm guessing the deb upgrade did an apache reload which may not be
sufficient to fully restart the master apache process.
Time to check all the work machines...
Cheers for the scan Andy.
Chris Tallon
On 11/04/14 19:54, Andy Smith wrote:
On Thu, Apr 10, 2014 at 06:31:42PM +0000, Andy Smith
wrote:
We're going to do some scans of our IPv4
space to look for
services vulnerable to the OpenSSL "heartbleed" vulnerability, so
we can open tickets with customers about it¹.
The first round of these tickets has now been created, so if you
didn't get one that means:
- Congratulations, you weren't vulnerable! Or; - We missed
something, or; - Our email (from support(a)bitfolk.com) went into
your spam folder
At the moment we are only checking ports: 25, 443, 465, 587, 993,
995, 8443. Can you think of any others that are likely to have SSL
services on?
I'll save further discussion for the users list from now on.
Cheers, Andy
_______________________________________________ announce mailing
list announce(a)lists.bitfolk.com
https://lists.bitfolk.com/mailman/listinfo/announce
_______________________________________________ users mailing list
users(a)lists.bitfolk.com
https://lists.bitfolk.com/mailman/listinfo/users