OpenSSL critical vulnerability [BossTDS is not affected] OpenSSL critical vulnerability - upgrade your servers if you use https
https://www.openssl.org/news/secadv_20140407.txt - a critical vulnerability found in openssl library. BossTDS is not affected, as it does not use https.
If you use SSL-secured pages (such as paypages or login pages) on your other sites and your openssl is newer than OpenSSL 0.9.8 - upgrade openssl ASAP!
You can test your servers for this vulnerability with these services:
http://filippo.io/Heartbleed/
http://rehmann.co/projects/heartbeat/
If you use SSL-secured pages (such as paypages or login pages) on your other sites and your openssl is newer than OpenSSL 0.9.8 - upgrade openssl ASAP!
You can test your servers for this vulnerability with these services:
http://filippo.io/Heartbleed/
http://rehmann.co/projects/heartbeat/
