FreeBSD's heartbleed response
Christian Laursen
xi at borderworlds.dk
Tue Apr 8 18:22:07 UTC 2014
On 04/08/14 20:17, Merijn Verstraaten wrote:
> Unless I misunderstood earlier emails, the heartbeat extension os ALREADY disabled in base, therefore FreeBSD base isn't vulnerable and the only problem is people who installed a newer OpenSSL from ports.
It would be nice, if so@ would send out such a statement to the
security-announce list ahead of the actual advisory, so that fewer
people will be panicing.
--
Christian Laursen
More information about the freebsd-security
mailing list