Am 21.04.2014 06:07, schrieb fausto milinazzo:
> In using the heartbleed exploit to obtain the root certificate and
> personal keys from an openvpn server was it necessary to have use a
> valid certificate? I would guess that to determine whether a
> particular server is vulnerable does not re
Hi,
On Sun, Apr 20, 2014 at 09:07:37PM -0700, fausto milinazzo wrote:
> I am also not certain why it is necessary to upgrade the windows client.
Because the windows installers 2.3.2-I001 to 2.3.2-I003 were built with
a vulnerable OpenSSL library, and since heartbleed works both ways, if
you have
In using the heartbleed exploit to obtain the root certificate and
personal keys from an openvpn server was it necessary to have use a
valid certificate? I would guess that to determine whether a particular
server is vulnerable does not require a valid certificate so it may be
possible to carr
