nanog mailing list archives
Re: Fwd: Serious bug in ubiquitous OpenSSL library: "Heartbleed"
From: Rob Seastrom <rs () seastrom com>
Date: Tue, 08 Apr 2014 08:28:54 -0400
Randy Bush <randy () psg com> writes:
you might like (thanks smb, or was it sra) openssl s_client -connect google\.com:443 -tlsextdebug 2>&1| grep 'server extension "heartbeat" (id=15)' || echo safe
protip: you have to run this from a device that actually is running 1.0.x, i.e. supports the heartbeat extension. your desktop mac (running 0.9.8y if you're running mavericks and haven't stomped on it via ports; homebrew is a keg only install) WILL NOT SUFFICE and will just sit there quietly until the http server times out (60 seconds in my case) and then echo "safe" even when you're not. -r
Current thread:
- Fwd: Serious bug in ubiquitous OpenSSL library: "Heartbleed" Paul Ferguson (Apr 07)
- RE: Serious bug in ubiquitous OpenSSL library: "Heartbleed" David Hubbard (Apr 07)
- Re: Serious bug in ubiquitous OpenSSL library: "Heartbleed" Peter Kristolaitis (Apr 07)
- RE: Serious bug in ubiquitous OpenSSL library: "Heartbleed" David Hubbard (Apr 08)
- Re: Serious bug in ubiquitous OpenSSL library: "Heartbleed" Paul S. (Apr 08)
- Re: Serious bug in ubiquitous OpenSSL library: "Heartbleed" Alain Hebert (Apr 08)
- Re: Serious bug in ubiquitous OpenSSL library: "Heartbleed" Peter Kristolaitis (Apr 07)
- RE: Serious bug in ubiquitous OpenSSL library: "Heartbleed" David Hubbard (Apr 07)
- Re: Fwd: Serious bug in ubiquitous OpenSSL library: "Heartbleed" Peter Kristolaitis (Apr 07)
- Re: Serious bug in ubiquitous OpenSSL library: "Heartbleed" Maxim Khitrov (Apr 07)
- Re: Fwd: Serious bug in ubiquitous OpenSSL library: "Heartbleed" Randy Bush (Apr 08)
- Re: Fwd: Serious bug in ubiquitous OpenSSL library: "Heartbleed" Maxim Khitrov (Apr 08)
- Re: Fwd: Serious bug in ubiquitous OpenSSL library: "Heartbleed" Rob Seastrom (Apr 08)
- Re: Fwd: Serious bug in ubiquitous OpenSSL library: "Heartbleed" Michael Thomas (Apr 08)
- Re: Fwd: Serious bug in ubiquitous OpenSSL library: "Heartbleed" Richard Hesse (Apr 08)
- Re: Fwd: Serious bug in ubiquitous OpenSSL library: "Heartbleed" Jonathan Lassoff (Apr 08)
- Re: Serious bug in ubiquitous OpenSSL library: "Heartbleed" Patrick W. Gilmore (Apr 08)
- Re: Serious bug in ubiquitous OpenSSL library: "Heartbleed" Maxim Khitrov (Apr 08)
- Re: Serious bug in ubiquitous OpenSSL library: "Heartbleed" Me (Apr 08)
- Re: Serious bug in ubiquitous OpenSSL library: "Heartbleed" bmanning (Apr 08)
- Re: Serious bug in ubiquitous OpenSSL library: "Heartbleed" Rob Seastrom (Apr 08)
- Re: Serious bug in ubiquitous OpenSSL library: "Heartbleed" bmanning (Apr 08)
- Re: Serious bug in ubiquitous OpenSSL library: "Heartbleed" jamie rishaw (Apr 08)