The Heartbleed password-leaking vulnerability in OpenSSL has almost been eradicated from the web just weeks after its discovery, according to an encryption expert. Ivan Ristic, director of engineering at cloud security firm Qualys, estimates that 25 per cent of websites worldwide were vulnerable to the data-disclosing bug on 8 …

COMMENTS

House rules Send corrections

This topic is closed for new posts.

Wednesday 30th April 2014 10:38 GMT Anonymous Coward

DD-WRT

Just waiting for firmware update on DD-WRT for my router and everything will be back to "normal". But nothing is really "normal" on the interweb.

0 0
1. Wednesday 30th April 2014 10:49 GMT Anonymous Coward
  
  Re: DD-WRT
  
  DD-WRT was fixed a while back.
  
  Their website is full of pointless ajax and it's bloody hard to find the current firmwares. It's via the "other downloads" link in the router database.
  
  0 0
  1. Wednesday 30th April 2014 11:07 GMT Anonymous Coward
    
    Re: DD-WRT
    
    You need to enter the Router database to find firmware.
    
    I found new firmware released April 22nd which installed without problems.
    
    0 0
    1. Wednesday 30th April 2014 16:50 GMT Anonymous Coward
      
      Re: DD-WRT
      
      And here I sit with a 2012 DD-WRT router bought in 2013 running firmware from 2008 with no updates available.
      
      Thanks Buffalo, you useless shits. Never again will I buy your garbage.
      
      0 0
Wednesday 30th April 2014 11:15 GMT A Non e-mouse

Patch Vs New Feature

Heartbleed was fixed quickly because it was a (simple) source patch to apply.

It took TLS 1.2 years to become standard because that's a new feature and requires new libraries and so on to support it. You'd only get it once your distro supported it and you updated to the new distro, or if you manually supply (e.g compile from source) OpenSSL.

0 0

This topic is closed for new posts.

Topics

Special Features

Vendor Voice

Resources

User topics

Article topics

User topics

Article topics

Interweb has staunched nearly all Heartbleed wounds, says crypto bod

COMMENTS

DD-WRT

Re: DD-WRT

Re: DD-WRT

Re: DD-WRT

Patch Vs New Feature

Other stories you might like

Sleuths who cracked Zodiac Killer's cipher thank the crowd

Telegram eyes IPO as user numbers close in on 1 billion

Nevada sues to deny kids access to Meta's Messenger encryption

European Court of Human Rights declares backdoored encryption is illegal

Feds post $15 million bounty for info on ALPHV/Blackcat ransomware crew

Raspberry Pi Pico cracks BitLocker in under a minute

Meta starts rolling out end-to-end encryption in Facebook Messenger

Privacy crusaders accuse X of ad-targeting that flouts EU rules

Bug hunters on your marks: TETRA radio encryption algorithms to enter public domain

EU lawmakers scolded for concealing identities of privacy-busting content-scanning 'experts'

UK may demand tech world tell it about upcoming security features

'Corrupt' cop jailed for tipping off pal to EncroChat dragnet

About Us

Our Websites

Your Privacy