Major OpenSSL Security Issue Found (and Fixed)

tearmeapart writes "A major security issue has been found in all OpenSSL packages. You probably want to download your preferred OpenSSL package as soon as possible. Changes to the CVS repository are detailed on the OpenSSL timeline."

CVS repository?

[honestmonkey]

Well, I guess I don't care then, because we only have Walgreens around here.

ssh?

[MMC Monster]

How does this effect ssh?

I've got a few systems running older distributions or custom distributions with little or no support that I ssh into.

One of them (http://www.readynas.com/?cat=3) has ssh exposed to the internet (not on port 22, but still...).

Is this something I need to worry about?

(Sorry in advance for my lack of specific geekdom to figure out the answer to this myself.)

Re:Security vs functionality

[ShaunC]

The latest OpenSSL has problems connecting to facebook.com and paypal.com

Sounds like a feature, not a bug.