bradkelley.com
Heartbleed OpenSSL Issue Description and Remediation - Brad Kelley
Great article over at StackExchange.com on the recently announced Heartbleed bug in OpenSSL. The bug allows any client who can connect to your SSL server to retrieve about 64kB of memory from the server at a time. The client doesn’t need to be authenticated in any way. By repeating the attack, the client can dump different parts …