Forgot your password?
typodupeerror

+ - Akamai reissues all SSL certificates after admitting Heartbleed patch fail->

Submitted by SpacemanukBEJY.53u
SpacemanukBEJY.53u (3309653) writes "It took security researcher Willem Pinckaers all of 15 minutes to spot a flaw in code created by Akamai that the company thought shielded most of its users from one of the pernicious aspects of the Heartbleed flaw in OpenSSL. More than a decade ago, Akamai modified parts of OpenSSL it felt were weak related to key storage. Akamai CTO Andy Ellis wrote last week that the modification protected most customers from having their private SSL stolen despite the Heartbleed bug. But on Sunday Ellis wrote Akamai was wrong after Pinckaers found several flaws in the code. Akamai is now reissuing all SSL certificates and keys to its customers."
Link to Original Source
This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

Akamai reissues all SSL certificates after admitting Heartbleed patch fail

Comments Filter:

CCI Power 6/40: one board, a megabyte of cache, and an attitude...

Working...