|
From: | [Kreiz IT] Cédric GROSS |
Subject: | Re: [Dolibarr-dev] Heartbleed bug on Dolibarr.fr |
Date: | Thu, 10 Apr 2014 12:39:34 +0200 |
Hello, Use or not use https is not enough to worry about this security hole. It’s all communication based on SSL which is implicated (certificate, SSH access, Github access, TLS etc…). If you use certificate issued from this server, there ‘re basically all compromised. Cedric De : address@hidden [mailto:address@hidden De la part de Doursenaud, Raphaël Hey, thanks for the heads up but if you go to https://dolibarr.fr or https://dolibarr.org, you'll see that the HTTPS version of the site is not available. I think there's no need to worry… 2014-04-10 12:21 GMT+02:00 Lorenzo Novaro <address@hidden>: Hello everyone, -- Raphaël Doursenaud Directeur technique (CTO) Expert certifié en déploiement Google Apps +33 (0)5 35 53 97 13 - +33 (0)6 68 48 20 10 Technopole Hélioparc 2 avenue du Président Pierre Angot 64053 PAU CEDEX 9 SARL GPC.solutions au capital de 7 500 € - R.C.S. PAU 528 995 921 |
[Prev in Thread] | Current Thread | [Next in Thread] |