Hi, If Perfect Forward Secrecy is enabled, it there still a change that the private keys are compromised? This is the hole point about PFS, right?
Grtz, On 04/09/2014 02:15 PM, bsod wrote: > Am 2014-04-09 13:38, schrieb Vladislav Kurz: >> So, why does openssh-server depend on libssl ? > oh... my bad, searched for dependencies openssl instead of libssl. > > However, it still does not use TLS and is therefore not concerned by > bugs in the heartbeat extension to it. > > Kind regards, > > Chris > > -- -- To UNSUBSCRIBE, email to debian-security-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/20140409131404.dd331...@bendel.debian.org
