[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-relays] are relays susceptible to the latest OpenSSL "freak" attack

To: tor-relays@xxxxxxxxxxxxxxxxxxxx
Subject: [tor-relays] are relays susceptible to the latest OpenSSL "freak" attack
From: starlight.2015q1@xxxxxxxxxxx
Date: Tue, 03 Mar 2015 23:26:00 -0500
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 03 Mar 2015 23:28:29 -0500
List-archive: <http://lists.torproject.org/pipermail/tor-relays/>
List-help: <mailto:tor-relays-request@lists.torproject.org?subject=help>
List-id: "support and questions about running Tor relays \(exit, non-exit, bridge\)" <tor-relays.lists.torproject.org>
List-post: <mailto:tor-relays@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=unsubscribe>
Reply-to: tor-relays@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-relays" <tor-relays-bounces@xxxxxxxxxxxxxxxxxxxx>

Cipher-downgrade CVE-2015-0204 fixed in OpenSSL 1.0.1k.

usual sensational write-up courtesy of El-Reg

http://theregister.co.uk/security

For operators who don't obsess
over "non-critical" OpenSSL releases,
is it time to catch up?

_______________________________________________
tor-relays mailing list
tor-relays@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

Follow-Ups:
- Re: [tor-relays] are relays susceptible to the latest OpenSSL "freak" attack
  - From: Nick Mathewson

Prev by Author: Re: [tor-relays] MY IP adress on blacklist and then in exit relay policy
Next by Author: Re: [tor-relays] Ports 443 and 80 are open, but 443 not Tor reachable
Previous by thread: Re: [tor-relays] 7 relays gone because of spammers
Next by thread: Re: [tor-relays] are relays susceptible to the latest OpenSSL "freak" attack
Index(es):
- Author
- Thread