[Slackbuilds-users] Cauterizing heartbleed (CVE-2014-0160)
B Watson
yalhcru at gmail.com
Sat Apr 12 06:55:37 UTC 2014
On 4/12/14, mancha <mancha1 at hush.com> wrote:
> After identifying candidates, we can worry about whether the bundled
> or statically-linked OpenSSLs are vulnerable or not.
Possibly stupid question but I'll ask it anyway. Are clients even
vulnerable? Everything I've seen about heartbleed (and I haven't really
researched in detail either) talks about attacks against vulnerable
servers... is it possible for a malicious server to exploit an unpatched
client?
More information about the SlackBuilds-users
mailing list